Pascal Hambourg a écrit :
Brent Clark a écrit :
[EMAIL PROTECTED] wrote:
iptables -P INPUT ACCEPT
iptables -P OUTPUT ACCEPT
iptables -P FORWARD ACCEPT
You forgot the FORWARD
i.e. iptables -t filter -A FORWARD --dst 10.30.142.12 -p tcp --dport
80 -J ACCEPT
According to the above, FORWARD default policy is already ACCEPT.
Besides, as FORWARD takes place after PREROUTING which contains the DNAT
rule, it should be "--dst 10.30.143.1".
And for completeness, if the default policy was DROP, a second rule
matching the return traffic would be necessary.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
