-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 30 Oct 2002 16:15:36 -0600, Alejandro González Hernández - Imoq wrote: > My computer has two network cards; eth0 has a real, public and valid > IP address. eth1 has a private address (192.168.1.169). > > What I am trying to to is to route the port 80 from the public network > to a computer (192.168.105.220) in the private network. > > To achieve this, I just set up the firewall with lokkit and then added > the two rules commented before: > > iptables -t nat -A PREROUTING -p tcp --dport 80 -j DNAT --to > 192.168.105.220:80 > iptables -I RH-Lokkit-0-50-INPUT 5 -p tcp --dport 80 -j ACCEPT > > But still can't reach port 80 from public network. > > I even tried stopping iptables and then only use the two rules above, > without luck :( > > What do you advise me to do? In that case the rule in the INPUT chain is not needed. Your FORWARD chain accepts everything, though. Hence I guess you haven't turned on IP Forwarding in the kernel: # echo "1" > /proc/sys/net/ipv4/ip_forward or # sysctl -w net.ipv4.ip_forward=1 and edit /etc/sysctl.conf appropriately, so next reboot will enable IP Forwarding automatically. Or use the "sysctlconfig-gtk" GUI to do all of this. - -- -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) iD8DBQE9wQeT0iMVcrivHFQRAhcVAJ4zmOEYaBzuZHIEr79BinvOmTX92QCeJBnN 5MRm+LfQ+FcAIhndNZGJMZs= =8BIA -----END PGP SIGNATURE----- -- Psyche-list mailing list Psyche-list@redhat.com https://listman.redhat.com/mailman/listinfo/psyche-list
