/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting!
/* ALSO: Don't quote this header. It makes you look lame :-) */
Hi everyone,
my problem is already mentioned in the masquerading HOWTO but
I4m not able to solve it.
Situation: I4ve got a linux box with 3 NICs
-external IP 1.2.3.4
-dmz IP 1.2.4.1
-internal IP 10.10.10.1 (masqueraded).
One of the masqueraded boxes is the official mailserver (10.10.10.99). It
can be
reached via the external interface with no problem (-> portforwarding from
1.2.3.4 port 25 to
10.10.10.99 25 is configured correctly).
And (according to the HOWTO) no internal host could reach the mailserver
via its official IP 1.2.3.4 . So I4ve configured the kernel to act as a
transparent
proxy and added the rules:
ipchains -A input -p tcp -s 10.10.10.0/24 -d 62.109.128.78 25 -j REDIRECT 25
ipchains -A input -p tcp -s 10.10.10.0/24 -d 62.109.128.78 110 -j REDIRECT
110
Now I4ve downloaded ndp (tcp bouncer) from www.whitehats.com and started it
with
the following commands.
/usr/local/sbin/ndp -L 62.109.128.78 25 -R 10.10.10.99 25
/usr/local/sbin/ndp -L 62.109.128.78 110 -R 10.10.10.99 110
telnet 1.2.3.4 25 from extern -> ok
telnet 1.2.3.4 25 from the local machine -> ok (!)
telnet 1.2.3.4 25 from internal > NOT ok
Maybe someone could provide me with a functional setup (rules, port
forwarder ...)?
If you need more infos (tcpump, ipchains-save ...) just ask.
TIA
Carsten
_______________________________________________
Masq maillist - [EMAIL PROTECTED]
Admin requests can be handled at http://www.indyramp.com/masq-list/ --
THIS INCLUDES UNSUBSCRIBING!
or email to [EMAIL PROTECTED]
PLEASE read the HOWTO and search the archives before posting.
You can start your search at http://www.indyramp.com/masq/
Please keep general linux/unix/pc/internet questions off the list.
