And don't forget to ALLOW the packets in the first place. Made me crazy the first time I did that....Put in the FORWARD rule, but no ACCEPT rule. $IPTABLES -A tcp_packets -p TCP -s 0/0 --dport 80 -j allowed #HTTP -=Ray -----Original Message----- From: Joel Newkirk [mailto:netfilter@xxxxxxxxxx] Sent: Friday, July 04, 2003 10:23 PM To: Guilherme Viebig Cc: *netfilter Subject: Re: Forwarding HTTP question On Fri, 2003-07-04 at 09:41, Guilherme Viebig wrote: > My Firewall has two interfaces > > eth0 200.123.234.111 > eth1 192.168.0.1 > > I have an internal webserver on 192.168.0.33 > > How can I setup iptables to forward incoming traffic by eth0 to port 80 go > to 192.168.0.33:80 ? iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j DNAT --to 192.168.0.33 j
