Pascal Hambourg a écrit :
Le lundi 05 juin 2006 à 10:40 +0200, Sietse van Zanen a écrit :
I think you should try something like this.
Have apache proxy listen on localhost (127.0.0.1) port 8081
Iptables -t NAT -A PREROUTING -p tcp -i eth0(internal nic) -m multiport
--dports http,https,squid,svn,http-alt,webcache -j REDIRECT --to
127.0.0.1:8081
No, this won't work. The IP stack refuses packets with a loopback
destination address received on a non loopback interface.
I forgot to mention that anyway this rule won't work and should cause an
error because its syntax is incorrect. REDIRECT accepts only a port or
port range in the --to or --to-ports option, not an address. Didn't you
mistake REDIRECT for DNAT ?
