Re: [Jwall-developers] problems with nat
Status: Alpha
Brought to you by:
zacklink
Menu
▾
▴
Re: [Jwall-developers] problems with nat
|
From: <jw...@sc...> - 2003-11-22 21:13:34
|
Hello zack,
On Fri, 21 Nov 2003 18:30:26 -0500
zack <za...@th...> wrote:
> I think I have this NAT issue fixed, but I haven't had a chance to test=20
> it yet. But, I ran into a problem. I was looking to do all port NATing=
=20
> in the PRE chains, but as far as I could tell from the man page on=20
> iptables, I cannot switch ports without switching IP,
you can do it.
iptables -t nat -A PREROUTING -s 10.0.0.1 -d 10.0.0.2 --proto tcp \
--destination-port 80 -j DNAT --to-dest :8080
> so SNATs will do=20
> port forwarding in the POST table, DNATs will do port forwarding in the=20
> PRE table, and if it is a double NAT, the port forwarding should happen=20
> in the PRE table (whereas before it moistakenly tried to port forward in=
=20
> both PRE and POST).
J=F6rg
--=20
J=F6rg Sch=FCtter http://www.lug-untermain.de/
jo...@sc... http://www.schuetter.org/joerg/
ICQ: 298982789 http://mypenguin.bei.t-online.de/
|
