Redirect and masquerading

Subject: Redirect and masquerading
From: Mike Barsalou (mbarsalou@aidea.org)
Date: Mon Apr 29 2002 - 10:03:04 AKDT

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Next message: W.D.McKinney: "RE: Firewall"
• Previous message: gkvokov@ieee.org: "trying out postfix"
• Next in thread: James Zuelow: "Re: Redirect and masquerading"

Can someone help me with redirecting packets past a masquerading firewall to
a particular machine.

I have a service I want to expose to the internet that is on a machine that
is behind a masqueraded firewall....is this possible? Seems like it should
be.

I have read the NAT-HOWTO and know that I should be using the PREROUTING
stuff to make it work....but something is wrong.

Here is what I do:

iptables -t nat -I PREROUTING -p tcp -d <EXTIP> --dport 80 -j DNAT
--to-destination 192.168.1.200:80

Should there be anything else?

Maybe a POSTROUTING entry, changing the stuff that returns from
192.168.1.200 to my EXTIP?

Thanks for any help.

Mike

---------
To unsubscribe, send email to <aklug-request@aklug.org>
with 'unsubscribe' in the message body.

• Next message: W.D.McKinney: "RE: Firewall"
• Previous message: gkvokov@ieee.org: "trying out postfix"
• Next in thread: James Zuelow: "Re: Redirect and masquerading"

This archive was generated by hypermail 2a23 : Mon Apr 29 2002 - 10:05:05 AKDT