3.17. Redirecting to Another Socket
Problem
You want to redirect a connection to another host and/or port, on the same or a different machine.
Solution
Use
xinetd
’s
redirect
keyword:
/etc/xinetd.conf or /etc/xinetd.d/myservice: service myservice { ... server =path to original service
redirect =IP_address port_number
}
The server
keyword is required, but its value is
ignored. xinetd will not activate a service unless
it has a server
setting, even if the service
being is redirected.
Discussion
For example, to redirect incoming finger connections (port 79) to another machine at 192.168.14.21:
/etc/xinetd.conf or /etc/xinetd.d/finger:
service finger
{
...
server = /usr/sbin/in.fingerd
redirect = 192.168.14.21 79
}
Of course you can redirect connections to an entirely different service, such as qotd on port 17:
service finger
{
...
server = /usr/sbin/in.fingerd
redirect = 192.168.14.21 17
}
Now incoming finger requests will instead receive an amusing “quote of the day,” as long as the qotd service is enabled on the other machine. You can also redirect requests to another port on the same machine.
See Also
xinetd.conf(5). A tutorial can be found at http://www.macsecurity.org/resources/xinetd/tutorial.shtml.
Get Linux Security Cookbook now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.