Balazs Fulop wrote:
# Generated by iptables-save v1.3.5 on Fri Dec 22 14:23:36 2006
*nat
:PREROUTING ACCEPT [58:10171]
:POSTROUTING ACCEPT [13:1459]
:OUTPUT ACCEPT [13:1459]
-A PREROUTING -d aaa.bbb.ccc.fff -i eth0 -p tcp -m tcp --dport 25 -j
DNAT --to-destination 192.168.3.1
-A PREROUTING -j LOG --log-prefix "PREROUTING: " --log-level 7
COMMIT
<snip>
If I telnet 192.168.3.1 25 on the firewall, an SMTP session starts. If I
telnet from outside (coming on eth0), it waits until timeout. I just
can't figure out why it is not working. At last I removed all the IP
aliases, and it didn't work that way either. There is nothing relevant
in /var/log/syslog. I have 1 in /proc/sys/net/ipv4/ip_forward.
It does not look like you are SNATing / MASQUERADing your traffic back
out to the internet.
Grant. . . .
