What abou the FORWARD chain? On Fri, Oct 31, 2003 at 11:59:25AM -0700, Han, Yan wrote: > > > # what is wrong ?? > > iptables -t nat -A PREROUTING -i eth0 -p tcp -d 150.135.44.245 --dport 80 > -j > > DNAT --to 150.135.45.96 > > >> what does "iptables -t nat -L -n -v" show? Is the counter (first column) > increased every time you try to connect your webserver? > > Yes! It does. The "pkts" increases once I try to connect the address > 150.135.44.245. I think it is correct that destination "150.135.44.245 > tcp dpt:80 to:150.135.45.96". Any idea? > > ------------------------------- > Chain PREROUTING (policy ACCEPT 512K packets, 78M bytes) > pkts bytes target prot opt in out source > destination > 3 144 DNAT tcp -- eth0 * 0.0.0.0/0 > 150.135.44.245 tcp dpt:80 to:150.135.45.96 > > Chain POSTROUTING (policy ACCEPT 46739 packets, 2972K bytes) > pkts bytes target prot opt in out source > destination > > Chain OUTPUT (policy ACCEPT 46752 packets, 2973K bytes) > pkts bytes target prot opt in out source > destination > > >> What does "cat /proc/sys/net/ipv4/ip_forward" show? > 1 > (so the ipv4-forward is opened). > > > > > Jörg > > -- > Jörg Schütter http://www.lug-untermain.de/ > joerg@xxxxxxxxxxxxx http://www.schuetter.org/joerg/ > ICQ: 298982789 http://mypenguin.bei.t-online.de/ > >
