On Wed, 25 Aug 1999, Martin Krzywinski wrote:
> A few things aren't working. For example, I can't ftp out of the private
> numbers. I guess there's something screwy in the masquerading setup.
> Telnet and browsing work fine. Http downloads work fine.
You need to 'modprobe ip_masq_ftp' - check out the modules in the ipv4
directory and you'll see there are separate ones for realaudio, and so
forth.
> ipchains -A forward -j MASQ
>
> added, but just that for now.
It's indiscriminate, but it'll work. I usually control who is allowed to
masq, but I guess you don't have to if it's not necessary.
> In addition, I'd like to have internal web/ftp/ssh servers. How can I
> forward requests to x.x.199.194 on a given port, say 23, to go to
> 10.1.1.Y:23?
This is a bit trickier - you can use the user-level 'redir' program, or
kernel module ip_port_fw. Try looking into the Documentation directory and
the ipfwadm tool for documentation on this.
k.
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
