AW: [Masq] portforwarding - redirect problem

Carsten Blume Tue, 24 Oct 2000 06:59:36 -0700
/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting! 
/* ALSO: Don't quote this header. It makes you look lame :-) */


Hi and sorry for my late response!

Ok, i4ve changed my setup in order to test this patch:

1. internal mailserver 10.10.10.2
2. test-box 10.10.10.3
3. test-gw
ext.ip: 10.10.30.220
int.ip: 10.10.10.1

vmware:~ # ipchains -n -v -L
Chain input (policy ACCEPT: 11787 packets, 991174 bytes):
Chain forward (policy ACCEPT: 53 packets, 3531 bytes):
 pkts bytes target     prot opt    tosa tosx  ifname     mark       outsize
source                destination           ports
   43  2829 MASQ       all  ------ 0xFF 0x00  eth0
0.0.0.0/0            0.0.0.0/0             n/a
Chain output (policy ACCEPT: 4416 packets, 417127 bytes): 
vmware:~ # ipmasqadm portfw -ln
prot localaddr            rediraddr               lport    rport  pcnt  pref
TCP  10.10.30.220         10.10.10.2                110      110     9    10
TCP  10.10.30.220         10.10.10.2                 25       25     3    10


I4ve applied the patch and recompiled the kernel with no success. Using
tcpdump i can see that the src address still does not get rewritten when
connecting to 10.10.30.220 from the test-box ;-).
Portforwarding is working because i can connect from the 10.10.30.0/24 LAN
to the internal mailserver.
Is it possible that this patch does not work with kernel 2.2.16 (and
downgrading to 2.2.13-15 is not_really_what_I_want) or is my 
setup broken?

Greetings

Carsten

> -----Urspr|ngliche Nachricht-----
> Von: Michael Best [mailto:[EMAIL PROTECTED]]
> Gesendet: Mittwoch, 18. Oktober 2000 18:42
> An: [EMAIL PROTECTED]; Carsten Blume
> Betreff: [Masq] portforwarding - redirect problem
> 
> 
> On 18 Oct 2000, Carsten Blume wrote:
>  
> > And (according to the HOWTO) no internal host could reach 
> the mailserver
> > via its official IP 1.2.3.4 . So I4ve configured the kernel 
> to act as a
> 
> I've written a patch for the 2.2.13-15 kernel to enables 
> this.  If you are
> interested let me know.
> 
> -- Michael Best

_______________________________________________
Masq maillist  -  [EMAIL PROTECTED]
Admin requests can be handled at http://www.indyramp.com/masq-list/ -- 
THIS INCLUDES UNSUBSCRIBING!
or email to [EMAIL PROTECTED]

PLEASE read the HOWTO and search the archives before posting.
You can start your search at http://www.indyramp.com/masq/
Please keep general linux/unix/pc/internet questions off the list.
AW: [Masq] portforwarding - redirect problem

Reply via email to
