Quoting Kirk Bocek <t004@xxxxxxxxxx>: > I did this successfully providing external SSH access to a collection > of hosts on a private network. However for this to work, the hosts on > the private net also need to be doing SNAT back out through the > firewall. Unless you are doing something funky, SNAT is not needed. All he needs is DNAT. Netfilter should take care of returning packets automagically (unless, as I said, you are doing something funky and confusing Netfilter with it). ---------------------------------------------------------------- This message was sent using IMP, the Internet Messaging Program.
A little iptables help
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: A little iptables help
- From: alex at milivojevic.org (Aleksandar Milivojevic)
- Date: Wed Sep 28 16:47:07 2005
- In-reply-to: <433ABBA5.7040301@xxxxxxxxxx>
- References: <1127912096.11027.5.camel@xxxxxxxxxxxxxxxxxxxxxx> <20050928151159.GR26336@xxxxxxxxxxxxxxx> <1127921861.23090.11.camel@xxxxxxxxxxxxxxxxxxxxxx> <433ABBA5.7040301@xxxxxxxxxx>
- Follow-Ups:
- A little iptables help
- From: Rodrigo Barbosa
- A little iptables help
- From: Kirk Bocek
- A little iptables help
- References:
- A little iptables help
- From: James Pifer
- A little iptables help
- From: Rodrigo Barbosa
- A little iptables help
- From: James Pifer
- A little iptables help
- From: Kirk Bocek
- A little iptables help
- Prev by Date: MythTV on Centos 4
- Next by Date: A little iptables help
- Previous by thread: A little iptables help
- Next by thread: A little iptables help
- Index(es):
 |