Re: [Shorewall-users] Howto redirect external ip:port to internal ip:port

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

----- Original Message -----
From: "Mario Kerecki" <ma...@ra...>

> Ciao Dario,
>
>     It looks like you need simple masquerading and port forwarding. Here
is how
> to get the desired result:
>
> first, this entry should be in your /etc/shorewall/masq file:
> #INTERFACE      SUBNET
> eth1            10.1.1.0/24
>
> The firewall must be the default gateway for this to work, then your
> /etc/shorewall/rules file should have these entries:
>
>
> ## for web you will need
> ACCEPT          net       local:10.1.1.1            tcp     80      -
all
>
> ACCEPT          net       local:10.1.1.2            tcp     81      -
all
>
> change the config for 10.1.1.2 to listen on port 81 instead of port 80 for
this
> to work
> it also makes it easier to troubleshoot

Thank you for the fast response, but unforunatly, for many reason,
I can't change the listen port on 10.1.1.2 (I use 81 for simplify but is
another)
then: from internet IP to 1.2.3.4:81, I must port forward to internal
10.1.1.2:80

I hoped that the shorewall do this form me, (iptables can do it).

... some suggest?

Many Thank

Dario Lesca (d....@iv...)