Ward.P.Fontenot@xxxxxxxxxxxxxx wrote:
> I've added the following and it still isn't working
>
> iptables -t nat -I PREROUTING -p tcp -m tcp --dport 8443 -j DNAT
> --to-destination 192.168.0.2:8443
> iptables -A FORWARD -d 192.168.0.1 -p tcp -m tcp --dport 8443 -j ACCEPT
>
> I've enabled forwarding - not sure if it's needed but it's there just in
> case.
Yes, you do need forwarding enabled.
In that second rule, the match address should be 192.168.0.2 since the
translation has already been applied. What does the rest of your
FILTER chain look like? If the packet matches a REJECT rule prior
to reaching your ACCEPT rule, that will be the end of it.
--
Bob Nichols "NOSPAM" is really part of my email address.
Do NOT delete it.
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos
Re: iptables question
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: centos@xxxxxxxxxx
- Subject: Re: iptables question
- From: Robert Nichols <rnicholsNOSPAM@xxxxxxxxxxx>
- Date: Mon, 23 Feb 2009 10:35:57 -0600
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <265707FCFFB30140A9FB019E26C38FF8307325@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
- References: <265707FCFFB30140A9FB019E26C38FF8306EB5@xxxxxxxxxxxxxxxxxxxxxxxxxxxx> <499EE727.3090206@xxxxxxxxxxxxxxxxx> <265707FCFFB30140A9FB019E26C38FF8307325@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
- User-agent: Thunderbird 2.0.0.19 (X11/20090107)
- References:
- iptables question
- From: Ward.P.Fontenot
- Re: iptables question
- From: Dan Carl
- Re: iptables question
- From: Ward.P.Fontenot
- iptables question
- Prev by Date: GNU Screen Macro?
- Next by Date: Re: Recover rpm DB corrupted by disk failure?
- Previous by thread: Re: iptables question
- Next by thread: iptables question
- Index(es):
 |