Re: [Shorewall-users] FW -> FW Redirect

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 454-5900

--On Friday, December 13, 2002 07:13:30 PM +0100 Ralf Schenk 
<rs...@da...> wrote:

> I upgraded to shorewall 1.3.11a and iptables 1.2.7a and my rule
>#
># Run ssh-smtp tunnel on the firewall an do transparent proxying
> REDIRECT        $FW     2525    tcp     smtp    -       !192.168.0.0/16
>
> doesn't work any more. How can I do a port redirection of locally
> originating connections to anther port ? In my case a ssh tunnel.

Hmmm - don't know what I want to do about that.

To work around the problem

1) Comment out your current rule.
2) Create /etc/shorewall/start if it doesn't already exist and in it place:

run_iptables -t nat -A OUTPUT -p tcp -d ! 192.168.0.0/16 --dport smtp -j 
REDIRECT --to-ports 2525

Please let me know if that works.
-Tom
--
Tom Eastep   \ Shorewall - iptables made easy
Shoreline,    \ http://shorewall.sf.net
Washington USA \ te...@sh...