-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 30 Oct 2002 11:30:12 -0600, Alejandro González Hernández - Imoq wrote: > [root@imoqland root]# iptables -t nat -A PREROUTING -p tcp --dport 80 > -j DNAT --to 192.168.105.220:80 > [root@imoqland root]# service iptables save > Saving current rules to /etc/sysconfig/iptables: [ OK ] > [root@imoqland root]# cat /etc/sysconfig/iptables | grep 192.168 > [0:0] -A PREROUTING -p tcp -m tcp --dport 80 -j DNAT --to-destination > 192.168.105.220:80 > > BUT > > [root@imoqland root]# telnet localhost 80 > Trying 127.0.0.1... > telnet: connect to address 127.0.0.1: Connection refused > [root@imoqland root]# telnet myrealip 80 > Trying 200.33.79.250... > telnet: connect to address 200.33.79.250: Connection refused Without knowing the rest of your rules, I cannot comment on this. For instance, for DNAT to work, you would also need a corresponding rule in the FORWARD chain. For the localhost example to work, you would need a corresponding rule in the INPUT chain. - -- -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) iD8DBQE9wCBj0iMVcrivHFQRAkftAJ4llpIkP8jt6vjEiJIO+uY7A25dTgCeP25T 4EYe6n0TxzguzCTMDydghqM= =R17y -----END PGP SIGNATURE----- -- Psyche-list mailing list Psyche-list@redhat.com https://listman.redhat.com/mailman/listinfo/psyche-list
