On Sunday 28 March 2004 5:58 am, Afshin Lamei wrote:
> Hi,
> I have this architecture in my network:
> an Iptables firewall between the LAN and the router. Firewall translates
> all LAN traffic from 192.168.1.x to it's valid IP address.
> I want to continue this, but allow a client - 192.168.1.7 - to perform
> TELNET to my router with his invalid address. what should I add to my
> rules?
iptables -I POSTROUTING -t nat -s 192.168.1.7 -p tcp --dport 23 -d
ip.of.rou.ter -j ACCEPT
Make sure this rule is before (hence the -I) your all-purpose MASQUERADE or
SNAT rule.
Antony.
--
"The joy of X!!?? I've always hated compiling graphical shite. You have a 10
line program, and it ends up depending on the entire known universe."
- Philip Hands
Please reply to the list;
please don't CC me.
