a give external access to internal users on the machine that act as a firewall giving the following commands: (is a batch run when a local machine is enbled and the opposite when is disabled - local machine have addresses as 172.24.8.y public addresses are of the kind A.B.C.y where $t4=y)
------- ifconfig eth0:$t4 $t4 netmask 255.255.255.0 iptables -t nat -A POSTROUTING -s $172.24.8.$t4 -j SNAT --to-source A.B.C.$t4 iptables -t nat -A PREROUTING -d A.B.C.$t4 -j DNAT --to-destination $172.24.8.$t4 --------- all works fine, except ftp, since when someone try to connet ther is a message PORT 172.24.8.y .... that of course is not recognized by remote machine. what is the better and cleanest way to fix this problem ? -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
