On Tue, 2004-09-21 at 04:04, Serguei I. Ivantsov wrote:
> Hello!
>
> I just interesting - whether something changes in Netfilter to support
> peer-to-peer games.
> How to implement the scheme described below using netfilter?
>
> <from the article>
[ snip ]
DNAT the necessary ports on the outside of your netfilter box to the
host on the inside that your playing games from, and put a rule in the
FORWARD chain that allows the traffic as well.
example--game port is UDP 7777:
iptables -t nat -A PREROUTING -i $EXTERNAL_IF -p udp \
-d $EXTERNAL_IP --dport 7777 -j DNAT --to-destination $CLIENT_IP
iptables -A FORWARD -p udp -d $CLIENT_IP --dport 7777 -j ACCEPT
adjust accordingly for you particular level of paranoia.
-j
--
Jason Opperisano <opie@xxxxxxxxxxx>
