Re: Help I'm brain dead (Port Mapping)

Chris Wilson <rhn_list@xxxxxxxxxx> · 13 Oct 2003 15:25:13 -0500

Never mind I found the problem. Somehow my /sbin/iptable command became
a zero length file.  :(

-- Chris

On Mon, 2003-10-13 at 13:08, Chris Wilson wrote:
> I am running a web server on port 8888 which is working. I want that web
> server to appear to be running on port 80 so I run the following command
> as root:
> /sbin/iptables -t nat -A PREROUTING -p tcp --dport 80 -j REDIRECT
> --to-port 8888
> 
> I know this worked in the past but currently it seems to be failing. I
> get no errors and if I do iptables -L I get not output at all.
> 
> If it "telnet localhost 8888" I get a good connect if I "telnet
> localhost 80" I get nothing.
> 
> netstat -an report: tcp 0 0 0.0.0.0:8888 0.0.0.0:* LISTEN
> 
> Any ideas on how to debug this problem?
> 
> incase it matters my /etc/sysconfig/iptables contains:
> *filter
> :INPUT ACCEPT [0:0]
> :FORWARD ACCEPT [0:0]
> :OUTPUT ACCEPT [0:0]
> :RH-Lokkit-0-50-INPUT - [0:0]
> -A INPUT -j RH-Lokkit-0-50-INPUT
> -A FORWARD -j RH-Lokkit-0-50-INPUT
> -A RH-Lokkit-0-50-INPUT -i lo -j ACCEPT
> -A RH-Lokkit-0-50-INPUT -i eth0 -j ACCEPT
> -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 0:1023 --syn -j REJECT
> -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 2049 --syn -j REJECT
> -A RH-Lokkit-0-50-INPUT -p udp -m udp --dport 0:1023 -j REJECT
> -A RH-Lokkit-0-50-INPUT -p udp -m udp --dport 2049 -j REJECT
> -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 6000:6009 --syn -j REJECT
> -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 7100 --syn -j REJECT
> COMMIT
> 
> 
> Thanks in advance,
> -- Chris
> 

-- 
redhat-list mailing list
unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list