I don't mind about the security because I'm doing it in local network. All what I'm asking why this work fine with standard iptables while it doesn't under Webmin!!!


On Sat, Feb 8, 2014 at 8:29 PM, Andrey Repin <anrdaemon@freemail.ru> wrote:
Greetings, Webmin users list!

> I want to redirect all requests on port 3389 to specified IP and port
> 192.168.0.3:3389 for that I use the following in iptables (I tested it
> and I found it works fine):
> ---
> sysctl net.ipv4.ip_forward=1
> iptables -t nat -A PREROUTING -p tcp --dport 3389 -j DNAT
> --to-destination 192.168.0.3:3389
> iptables -t nat -A POSTROUTING -j MASQUERADE
I already said, don't do this.
With this rule, you're creating a security hole in your system and in systems
connected with yours, as it tricking connected systems to believe that all
traffic passing through your system is originated from your system.


--
WBR,
Andrey Repin (anrdaemon@freemail.ru) 08.02.2014, <23:27>

Sorry for my terrible english...


------------------------------------------------------------------------------
Managing the Performance of Cloud-Based Applications
Take advantage of what the Cloud has to offer - Avoid Common Pitfalls.
Read the Whitepaper.
http://pubads.g.doubleclick.net/gampad/clk?id=121051231&iu=/4140/ostg.clktrk
-
Forwarded by the Webmin mailing list at webadmin-list@lists.sourceforge.net
To remove yourself from this list, go to
http://lists.sourceforge.net/lists/listinfo/webadmin-list



--
Best Regards
Muhammad Bashir Al-Noimi