in manual am asta
REDIRECT
This target is only valid in the nat table, in the
PREROUTING and OUTPUT chains, and user-defined chains which are only
called from those chains. It alters the destination IP address to send
the packet to the machine itself (locally-generated packets are mapped
to the 127.0.0.1 address). It takes one option:
--to-ports port[-port]
This specifies a destination port or range of ports
to use: without this, the destination port is never altered. This is
only valid if the rule also specifies -p tcp or -p udp.
Ce nu inteleg totusi este urmatorul lucru:
Imi face redirect dar catre ce ip din cele multe care le am pe server ?
Banuiesc ca imi face redirect catre un ip care se afla in acelasi
subnet cu ip redirectat. Ex. Vreau sa redirect ip1, el mi-l
redirecteaza catre ip2 setata pe server, unde ip1 si ip2 sunt in
acelasi subnet. E corect ce presupun? Problema mea apare cand vreau sa
fac redirect la niste ipuri ppp si acolo nu mai merge
Caz concret: Vreau sa redirectez dns trafic catre dns server local:
pe eth1 am clienti din subnet_A
iptables -t nat -A PREROUTING -p udp --dport 53 -s $subnet_A -j REDIRECT
asa e ok
dar daca am subnet_B care e folosit numai de legaturi ppp
atunci traficul redirectat se pierde intr-o gaura neagra si nu stiu cum
sa imi explic. Incearca cumva sa redirecteze la un ip setat pe server
care se afla in acelasi subnet cu ip din legatura ppp si cum asa ceva
nu exisat se incurca, sau ce se intampla ?
--
Mihai Voica
_______________________________________________
RLUG mailing list
[email protected]
http://lists.lug.ro/mailman/listinfo/rlug
