On Wed, Sep 30, 2020 at 05:12:18PM +0000, JadoNena via Shorewall-users wrote: > > Something needs to tell the system to allow that traffic when it comes from > external, not just internal. > > Where do I add the rule or route in Shorewall to do that ? > What are the right documents & examples for managing & redirecting INCOMING > traffic from the internet like this, not outgoing TO the internet ? >
https://shorewall.org/two-interface.htm#DNAT ======================================== Port Forwarding (DNAT) One of your goals may be to run one or more servers on your local computers. Because these computers have RFC-1918 addresses, it is not possible for clients on the Internet to connect directly to them. It is rather necessary for those clients to address their connection requests to the firewall who rewrites the destination address to the address of your server and forwards the packet to that server. When your server responds, the firewall automatically performs SNAT to rewrite the source address in the response. ======================================== Everything you need should be on that page, below the text I quoted. Regards, -Roberto -- Roberto C. Sánchez http://people.connexer.com/~roberto http://www.connexer.com _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
