On Saturday 24 July 2004 4:25 am, ÐÐÑÐÐÐÐ ÐÐÐÑÐÐÐÐ wrote:
> I've installed fedora core 2 and tried to reuse my old settings i
> retained from redhat9 system.
>
> Masqeurading works fine, but when i try to do port forwarding like this
> iptables -t nat -A PREROUTING -p tcp -d <domainname.com> --dport 80 -j
> DNAT --to 192.168.20.40:80
> rule adds itself fine, but port 80 is not accessible from outside.
Are you sure about the resolving of domainname.com? What does the rule get
added as?
> when i try to connect from outside it doesn't say connection refused, it
> dies after a timeout.
> /proc/net/ip_conntrack doesn't show any presence of connection, I tried
> to send it to -j LOG & ULOG but both end up empty.
Please show us your ruleset. We would like to see:
- what IP address the above PREROUTING rule gets installed with
- the corresponding FORWARD rule for the packets
- an appropriate reply packet rule
- how you have been LOGging packets for testing
I suggest the output of "iptables -L -nvx; iptables -L -t nat -nvx" and if
appropriate also "iptables -L -t mangle -nvx" is a good format for us to
understand where you're starting from.
Regards,
Antony.
--
In science, one tries to tell people
in such a way as to be understood by everyone
something that no-one ever knew before.
In poetry, it is the exact opposite.
- Paul Dirac
Please reply to the list;
please don't CC me.
