Hi Chuck,
iptable -t nat -I PREROUTING -d 192.168.168.0/24 --dport 80 -j DNAT --to target:port Should work without reasonable impact on the load...hmm.. ok im no iptables whiz but i will try this syntax... i have to eliminate nat since they are all public ip addresses.. i suspect maybe something like this might work in our saved rules file? (gentoo)
You will need NAT - as this will translate the destination...
i suspect maybe this may need to be changed.. -A RH-Firewall-1-INPUT PREROUTING -d 64.113.34.0/24 --dport 80 [dont know what to do with -j here] --to 64.113.34.0/24:7080
Basically "PREROUTING" is another chain than the one you are using - so, I suggest: iptables -t nat -A PREROUTING -p tcp -d 64.113.34.0/24 --dport 80 -j DNAT --to :7080
This will redirect every traffic to 64.113.34.0/24:80 to the same ip as the orginal paket but going to port 7080.
If you want to stuff everything into one vServer with one IP, just repace the target with
-j DNAT --to vserversip:port HTH OliverPS: if you have problems revealing private data write PM, or join #vserver - will be there shortly as oliwel
-- Diese Nachricht wurde digital unterschrieben oliwel's public key: http://www.oliwel.de/oliwel.crt Basiszertifikat: http://www.ldv.ei.tum.de/page72
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
