your line should be iptables -t nat -A PREROUTING -p tcp -d 202.138.128.xxx --dport 80 -j DNAT --to-destination 192.168.247.5:80
where the 202.138.128.xxx is the equivalent A record of your url. On Monday 08 September 2003 14:37, Fritz Mesedilla wrote: > Friends! Long time no hear!!! > Help naman! > > I can't seem to make dnat work. > Here is my current setup: > > router - firewall - web server > > I don't want to allow the internet to directly connect to the web server. > This is what my current iptables for nat look like: > > 202.138.128.xxx = router-given public ip > 192.168.247.3 = firewall local ip that corresponds to 202.138.128.xxx > 192.168.247.5 = web server local ip > > iptables -t nat -A PREROUTING -p tcp -d 192.168.247.3 --dport 80 -j DNAT > --to-destination 192.168.247.5:80 > > I see this: > [EMAIL PROTECTED] firewall]# iptables -nvL -t nat > Chain PREROUTING (policy ACCEPT 3318K packets, 1243M bytes) > pkts bytes target prot opt in out source > destination 21 1008 DNAT tcp -- * * 0.0.0.0/0 > 192.168.247.3 tcp dpt:80 to:192.168.247.5:80 > > Pero wala akong natatanggap sa web server na requests. Help naman! > > Thanks! > > > fritz <www.mesedilla.com> > --- > + Basta Ikaw Lord > > > ---------------------------------------------------------------------- > This email and any files transmitted with it are confidential and > intended solely for the use of the individual or entity to whom they > are addressed. If you have received this email in error please notify > the sender immediately by e-mail and delete this e-mail from your > system. Please note that any views or opinions presented in this > email are solely those of the author and do not necessarily represent > those of the company. Finally, the recipient should check this email > and any attachments for the presence of viruses. The company accepts > no liability for any damage caused by any virus transmitted by this > email. > > Overture Media, Inc. > Direct Line: (632) 635-4785 > Trunkline: (632) 631-8971 Local 146 > Level 1 Summit Media Offices, Robinsons Galleria EDSA Cor. Ortigas Ave., > Quezon City 1100 -- Alben Benavente Alteza Information Systems Security Administration Information Systems Dept./ Philippine Airlines -- Philippine Linux Users' Group (PLUG) Mailing List [EMAIL PROTECTED] (#PLUG @ irc.free.net.ph) Official Website: http://plug.linux.org.ph Searchable Archives: http://marc.free.net.ph . To leave, go to http://lists.q-linux.com/mailman/listinfo/plug . Are you a Linux newbie? To join the newbie list, go to http://lists.q-linux.com/mailman/listinfo/ph-linux-newbie
