On Tuesday 17 February 2004 7:10 pm, Alexis wrote:
> iptables -t nat -A PREROUTING -p tcp --dport 80 -j DNAT --to
> x.x.x.x:8080
You might prefer to use REDIRECT - it's like DNAT, but only allows you to
specify the port number, and forces the IP address to the local machine:
iptables -A PREROUTING -t nat -d a.b.c.d -p tcp --dport 80 -j REDIRECT --to
8080
(Note that I've added a "-d a.b.c.d" where a.b.c.d is the IP address of the
machine with the rule on it - otherwise it would redirect *all* TCP port 80
traffic, whether it was originally addressed to this machine or somewhere
else.)
Regards,
Antony.
> On Tue, 2004-02-17 at 16:04, Alexis wrote:
> > iptables -t mangle -A PREROUTING -p tcp --dport 80 -j DNAT --to
> > x.x.x.x:8080
> >
> > could be a start :)
> >
> > On Tue, 2004-02-17 at 15:55, Martinez, Michael wrote:
> > > Guys -
> > >
> > > I'm finding a lack of documentation describing how to do this. It ought
> > > to be simple. I know how to do it with ipchains.
> > >
> > > On a redhat linux system using /etc/sysconfig/iptables, what line(s) do
> > > I add to /etc/sysconfig/iptables to configure to redirect all inbound
> > > port 80 traffic to port 8080 on the same host?
> > >
> > > Thank you -
> > >
> > > Regards,
> > >
> > > Michael Martinez
> > > ISTM/CSREES
> > > United States Department of Agriculture
> > > ---
> > > This email is signed with my digital signature so that you may verify
> > > the authenticity of the sender.
--
These clients are often infected by viruses or other malware and need to be
fixed. If not, the user at that client needs to be fixed...
- Henrik Nordstrom, on Squid user's mailing list
Please reply to the list;
please don't CC me.
