Re: Port Forwarding Question

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Fri, May 8, 2009 at 08:57, Michele Petrazzo - Unipex
<michele.petrazzo@xxxxxxxxx> wrote:
> Aaron Clausen wrote:
>>
>>  With the 3Com router, I can, from another internal computer,
>> access that server via the external interface (ie, by going
>> http://publicaddress).  When I throw in my Linux router, it does not
>> do that, and user's have to use the internal IP or host name to access
>> the device.
>>
>
> What rules have you wrote?
> an
> iptables -t nat -A PREROUTING -s local_addrs/mask -d ip_addrs \
>         -p tcp --dport http -j DNAT --to-destionation internal_web
> and the respective
> iptables -t nat -A POSTROUTING -d internal_web -p tcp --dport http -j SNAT
> --to-source gw_ip
>
> must to the trick.
>
> So the request stay inside the lan and there is no "loops"

How do write this if the WAN IP is supplied via DHCP?


--
Aaron Clausen
mightymartianca@xxxxxxxxx
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at  http://vger.kernel.org/majordomo-info.html

[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux