Hi all, I have everything working sweet with IPtables but what I've noticed is that the firewall itself can't ping/connect to the internal/NATed webservers...
Outside and Inside clients are routed / transalated back and forth OK but the firewall can't connect.. >From my little diagram, I can only see that it can only be done at the OUTPUT(nat) chain and the PREROUTING(nat) chain on the internal nic interface Does this sound right to people.. I don't want to knock my webserver down..... iptables -A OUTPUT -t nat -d 203.x.x.x -j DNAT --to 192.168.1.1:80 iptables -A PREROUTING -t nat -s 192.168.1.1:80 -i eth0 -j SNAT --to 203.x.x.x Does this sound right and hopefully not effect the outside/inside requests.. should effect only the firewall as far as I can see... thanks.. might have to try it tonight... -- SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
