sangprabv wrote: > Alrite got the idea. Thanks alot. But is it possible if I want public IP > aa.bb.cc.1:22 port forwarded to private IP xx.yy.zz.1:22 and public IP > aa.bb.cc.1:80 port forwarded to private IP xx.yy.zz.2:80 while > xx.yy.zz.2 also appears as aa.bb.cc.2 from the internet? TIA. > > > > Willy
Judging by this below, yes, you should, with DNAT rule in /etc/shorewall/rules, but you will have to test this, or Tom will answer you. >>>>> On Sat, 2009-05-02 at 20:30 -0700, Tom Eastep wrote: >>>>>> Your question still is as clear as mud -- but: >>>>>> >>>>>> - DNAT rules in /etc/shorewall/rules override entries in >>>>>> /etc/shorewall/nat. >>>>>> >>>>>> - Entries in /etc/shorewall/masq that begin with '+' override entries in >>>>>> /etc/shorewall/nat. >>>>>> >>>>>> Hope that helps. >>>>>> >>>>>> -Tom ------------------------------------------------------------------------------ Register Now & Save for Velocity, the Web Performance & Operations Conference from O'Reilly Media. Velocity features a full day of expert-led, hands-on workshops and two days of sessions from industry leaders in dedicated Performance & Operations tracks. Use code vel09scf and Save an extra 15% before 5/3. http://p.sf.net/sfu/velocityconf _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
