Tried it a couple of ways, both with rules for the specific IP address, as well as for the whole /24 subnet. No luck. :^[
To Chris Fischer's question, no other rules in effect, default policy is ACCEPT. Still, I tried adding explicit ACCEPT rules for ports 80 and 8080, but no luck either. -Steve On Mon, Jan 25, 2010 at 8:35 AM, Brian Lane <[email protected]> wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On 1/24/10 5:25 PM, Steve McCarthy wrote: > > So I've Googled a bit and looked around, and the common wisdom is that > you > > can use a simple prerouting rule on the nat table to cause all traffic to > > iptables -A PREROUTING -t nat -i eth0 -p tcp --dport 80 -j REDIRECT > > --to-port 8080 > > This is what works for me, I use the specific IP in my iptables rule file: > > *nat > - -A PREROUTING -p tcp -d 192.168.101.4 --dport 80 -j REDIRECT > --to-ports 8888 > COMMIT > > Brian > > - -- > - ---[Office 72.2F]--[Outside 42.4F]--[Server 109.4F]--[Coaster 65.4F]--- > - ---[ KLAHOWYA WSF (366773110) @ 47 30.9018 -122 28.9320 ]--- > Software, Linux, Microcontrollers http://www.brianlane.com > AIS Parser SDK http://www.aisparser.com > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.7 (Darwin) > Comment: Remember Lexington Green! > > iD8DBQFLXchHIftj/pcSws0RAgi9AJsFyfnZRGRNneYgxmVqXGs0W910pQCghHkB > z3tf4HC8mM/5OwTNlyruv70= > =Wd6d > -----END PGP SIGNATURE----- > -- Steve McCarthy [email protected] [email protected]
