Hi Kennycom, Thanks for the reply! Is Kennycom1_ip your server inside your nat network using an inside ip?
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Kennycom Sent: Saturday, December 25, 2004 10:38 PM To: [email protected] Subject: Re: [hlds_linux] Iptables help! ;-) Here is my iptables setup,, there is a port range, as at times I have more then 1 server running (CSS/HL2dm). If you are just going to be running 1 game process on the 1 server then edit it . I am sure that someone here will probably point out a few lines that could be dropped for your purposes. If there is no need to insure access from the inside network to the gameserver with a client game then drop the postrouting strings, as they are probably redundent but help insure everything works. # CS iptables -A PREROUTING -t nat -p udp -d ${OUTSIDE_IP} --dport 1200 -j DNAT --to ${KENNYCOM1_IP}:1200 iptables -A FORWARD -p udp -d ${KENNYCOM1_IP} --dport 1200 -o ${INSIDE_DEVICE} -j ACCEPT iptables -A PREROUTING -t nat -p udp -d ${OUTSIDE_IP} --dport 27020 -j DNAT --to ${KENNYCOM1_IP}:27020 iptables -A FORWARD -p udp -d ${KENNYCOM1_IP} --dport 27020 -o ${INSIDE_DEVICE} -j ACCEPT iptables -A PREROUTING -t nat -p udp -d ${OUTSIDE_IP} --dport 27000:27016 -j DNAT --to ${KENNYCOM1_IP}:27000-27016 iptables -A FORWARD -p udp -d ${KENNYCOM1_IP} --dport 27000:27016 -o ${INSIDE_DEVICE} -j ACCEPT iptables -A POSTROUTING -t nat -p udp -d ${KENNYCOM1_IP} --dport 27000:27016 -s ${INSIDE_NETWORK}/${INSIDE_NETMASK} -j SNAT --to ${OUTSIDE_IP} iptables -A PREROUTING -t nat -p tcp -d ${OUTSIDE_IP} --dport 27030:27039 -j DNAT --to ${KENNYCOM1_IP}:27030-27039 iptables -A FORWARD -p tcp -d ${KENNYCOM1_IP} --dport 27030:27039 -o ${INSIDE_DEVICE} -j ACCEPT iptables -A POSTROUTING -t nat -p tcp -d ${KENNYCOM1_IP} --dport 27030:27039 -s ${INSIDE_NETWORK}/${INSIDE_NETMASK} -j SNAT --to ${OUTSIDE_IP} iptables -A PREROUTING -t nat -p tcp -d ${OUTSIDE_IP} --dport 27015:27016 -j DNAT --to ${KENNYCOM1_IP}:27015-27016 iptables -A FORWARD -p tcp -d ${KENNYCOM1_IP} --dport 27015:27016 -o ${INSIDE_DEVICE} -j ACCEPT iptables -A POSTROUTING -t nat -p tcp -d ${KENNYCOM1_IP} --dport 27015:27016 -s ${INSIDE_NETWORK}/${INSIDE_NETMASK} -j SNAT --to ${OUTSIDE_IP} Other information can be found at www.iptables.org =) ----- Original Message ----- From: "danal1" <[EMAIL PROTECTED]> To: <[email protected]> Sent: Saturday, December 25, 2004 3:37 PM Subject: [hlds_linux] Iptables help! ;-) > Hi, > Does anyone use the Linux server behind an iptables firewall? > > If so, could you email your Ipmasquerade and forwarding rules and port > settings tcp and udp for > the HLDS? > > Thanks! > > This is a great list to be on! > Dana > > > -- > No virus found in this outgoing message. > Checked by AVG Anti-Virus. > Version: 7.0.296 / Virus Database: 265.6.4 - Release Date: 12/22/2004 > > > > _______________________________________________ > To unsubscribe, edit your list preferences, or view the list archives, > please visit: > http://list.valvesoftware.com/mailman/listinfo/hlds_linux > _______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux -- No virus found in this incoming message. Checked by AVG Anti-Virus. Version: 7.0.296 / Virus Database: 265.6.4 - Release Date: 12/22/2004 -- No virus found in this outgoing message. Checked by AVG Anti-Virus. Version: 7.0.296 / Virus Database: 265.6.5 - Release Date: 12/26/2004 _______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux
