Help Redirect

Antony@xxxxxxxxxxxxxxxxxxxx (Antony Stone) · Wed, 6 Nov 2002 17:44:57 +0000

On Wednesday 06 November 2002 4:34 pm, Linux User wrote:

> Hi friends,
>
> My consultation is the following one:
>
> What rules (IPTABLES) in firewall I can apply so that all the requirement
> of the internal network to port 80 is redirected to an external Squid Proxy
> server (3128) .
>
> Firewall:
> Eth0 (External): 192.168.100.1
> Eth1 (Internal):   172.16.100.1
>
> Squid Proxy Server:
> Eth0 : 192.168.100.100

iptables -A PREROUTING -t nat -i eth1 -p tcp --dport 80 -j DNAT --to 
192.168.100.100:3128
iptables -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -A FORWARD -i eth1 -p tcp --dport 3128 -d 192.168.100.100 -j ACCEPT

Antony.

-- 

Anything that improbable is effectively impossible.

 - Murray Gell-Mann, Nobel Prizewinner in Physics