Hi!
I could need some help with setting up a prerouting for a webserver
on my gateway.
static-Internet-IP on eth1
|
+----------------+
| |
| 192.168.20.210 |
| on eth0 |
+----------------+
|
+-----------+
| |
+---------+ +----------+
| | | |
192.168.20.60 | | 192.168.20.61
Squid | | Webserver
| | | |
192.168.1.75 | | |
+---------+ +----------+
|
+--------+
192.168.1.3 |
WKS |
+--------+
I addes a rule before all other forwarding and input and output
rules:
iptables -A FORWARD -p TCP -d 192.168.20.61 --dport 8080 -j ACCEPT
iptables -t nat -A PREROUTING -p TCP -d 192.168.20.210 --sport 1024: \
--dport 80 -j DNAT --to 192.168.20.61:8080
When I contact the proxy on 192.168.20.60 from 192.168.1.3 or from within the
the DMZ at 192.168.20.60 to call 192.168.20.210, nothing happens,
nothing in the logs.
What kind of problem do I have here? Is it possible at all to test such
a prerouting-rule from within the DMZ or the local network?
Thank you for listening!
--
Andreas Meyer | http://www.anup.de
| http://home.wtal.de/MeineHomepage
