Hi there...
I have to do a firewall with DMZ (nat) as follows:
(DMZ)
Internet ------ Firewall 1 --------- Firewall 2 ------ LAN
|-- WWW
|-- Mail
|-- DNS
We have 16 extern IP\'s, so, every Server in the DMZ has
to be mapped to a real IP.
I did the follow:
ifconfig eth1:1:0 add 1.2.3.4 (= real IP for the WWW-Server)
and
iptables -t nat -A PREROUTING -d 1.2.3.4 -j DNAT --to-destination 10.0.0.4
(= IP of the WWW-Server in the DMZ)
iptables -t nat -A POSTROUTING -s 10.0.0.4 -j SNAT --to-source 1.2.3.4
so, ping and SSH works, but nothing else.
has anyone an idea?
thanks in advance
