On Mon, Jul 11, 2005 at 05:20:43PM +0200, Jan Engelhardt wrote: > > >Hi, > >I have a rule on my friend's broadband connection to redirect traffic > >from outside to an internal machine like, > > > >iptables -A PREROUTING -d 1.2.3.4 -p tcp -m tcp --dport 80 -j DNAT \ > >--to-destination 192.168.10.10:80 > > > >But she complained that people from inside the network cannot do > >http://1.2.3.4 in their browser and see the site. Is she correct? > >What is wrong with my rule because I can see the site from outside? > > The packet must pass the machine the DNAT rule is on to make the dnat > effective. > So what do I do exactly? With warm regards, -Payal
