[rlug] Re: Problema iptables

George Tolea Wed, 12 Feb 2003 06:26:21 -0800

lonely wolf wrote:

George Tolea wrote:
root@server# cat firewall
echo "1">/proc/sys/net/ipv4/ip_forward
IPTABLES=/sbin/iptables
SS=a.b.c.d
DD=x.y.z.v
$IPTABLES -t nat -F
$IPTABLES  -F
$IPTABLES -v -t nat -A POSTROUTING -s 192.168.10.0/24 -d 0/0 -j MASQUERADE
$IPTABLES -v -t nat -A PREROUTING -p tcp -s $SS -d $DD --dport 80 -j DNAT --to-destination 192.168.10.45:80

Cu toate astea cand incerc de la ip-ul a.b.c.d ...telnet x.y.z.v 80 ...ramane la Trying x.y.z.v ...si dupa un timp da Connection timed out...

Ce anume nu este corect?
Ce imi scapa ...?
#iptables -I FORWARD -p tcp --dport 80 -j LOG
#tail -f /var/log/messages

Feb 12 16:29:42 server kernel: IN=eth0 OUT=eth1 SRC=a.b.c.d DST=192.168.10.45 LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=13629 DF PROTO=TCP SPT=37857 DPT=80 WINDOW=5840 RES=0x00 SYN URGP=0
Feb 12 16:29:45 server kernel: IN=eth0 OUT=eth1 SRC=a.b.c.d DST=192.168.10.45 LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=13630 DF PROTO=TCP SPT=37857 DPT=80 WINDOW=5840 RES=0x00 SYN URGP=0

E ceva aiurea in aceste 2 linii?

--
Pentru dezabonare, trimiteti mail la [EMAIL PROTECTED] cu subiectul 'unsubscribe rlug'.
REGULI, arhive si alte informatii: http://www.lug.ro/mlist/

[rlug] Re: Problema iptables

Raspunde prin e-mail lui