On Monday 29 March 2004 9:26 pm, Cody Harris wrote:
> It works once i ran this:
>
> iptables -t nat -A PREROUTING -p tcp -i eth0 --dport 22 -j DNAT --to
> 192.168.0.2:22
>
> Why did i need that? Do i still need my other rules? (in my filter -
> forward chain)?
You need a PREROUTING nat rule if you want the firewall to change the
destination address where the packets are going to.
You need a FORWARD filter rule to allow the packets through the firewall
(whether it's changed the destination address or not).
Regards,
Antony.
--
The first fifty percent of an engineering project takes ninety percent of the
time, and the remaining fifty percent takes another ninety percent of the
time.
Please reply to the list;
please don't CC me.
