Hi fellow Vyatta users.
Thanks for the previous help with configuring my outbound NAT rule, I am
able to ping from Server 1 to Vyatta and to the internet. Hurray! I
struggled a bit with this, but finally realized that I had to set Server 1's
DNS to Comcast's DNS servers, then all resolved.
Now I am interested in setting up an inbound NAT rule so that internet
traffic will be directed to a specified server for a specified port.
Here is my current inbound NAT rule:
rule 20 {
type: "destination"
inbound-interface: "eth1"
protocols: "all"
source {
network: "192.168.xxx.0/24"
}
destination {
network: "0.0.0.0/0"
}
inside-address {
address: 192.168.xxx.189
}
}
In my hardware, eth0 is my lan and eth1 is my wan. As it is, I can hit my
static IP 75.145.xxx.189 from outside my network and I get the Vyatta
webgui. This is not good. when I get home tonight I had better change the
default password J. The above rule however, looks backwards, I would
intuitively think the source would be 0.0.0.0/0 and be destined for
192.168.xxx.0/24. Also, should my inside-address be assigned to my lan eth0
IP or wan eth1 IP?
Thanks again for all the support!
Todd
_______________________________________________
Vyatta-users mailing list
Vyatta-users@mailman.vyatta.com
http://mailman.vyatta.com/mailman/listinfo/vyatta-users
