Menu
▾
▴
Re: [webmin-l] IP redirect
|
From: Andrey R. <anr...@fr...> - 2014-02-15 19:35:23
|
Greetings, Webmin users list! > Come on guys, may some one help me here... please. 1. Without full dump of the rules this can't be solved. 2. Following 1, this is not a webmin question. This is generic netfilter/iptables question. 3. Your rules have an error that will cost you a headache at least. > On Wed, Feb 12, 2014 at 5:21 PM, Muhammad Bashir Al-Noimi <mb...@gm... >> wrote: >> I don't mind about the security because I'm doing it in local network. All >> what I'm asking why this work fine with standard iptables while it doesn't >> under Webmin!!! >> >> >> On Sat, Feb 8, 2014 at 8:29 PM, Andrey Repin <anr...@fr...>wrote: >> >>> Greetings, Webmin users list! >>> >>> > I want to redirect all requests on port 3389 to specified IP and port >>> > 192.168.0.3:3389 for that I use the following in iptables (I tested it >>> > and I found it works fine): >>> > --- >>> > sysctl net.ipv4.ip_forward=1 >>> > iptables -t nat -A PREROUTING -p tcp --dport 3389 -j DNAT >>> > --to-destination 192.168.0.3:3389 >>> > iptables -t nat -A POSTROUTING -j MASQUERADE >>> I already said, don't do this. >>> With this rule, you're creating a security hole in your system and in >>> systems >>> connected with yours, as it tricking connected systems to believe that all >>> traffic passing through your system is originated from your system. >>> >>> >>> -- >>> WBR, >>> Andrey Repin (anr...@fr...) 08.02.2014, <23:27> >>> >>> Sorry for my terrible english... >>> >>> >>> >>> ------------------------------------------------------------------------------ >>> Managing the Performance of Cloud-Based Applications >>> Take advantage of what the Cloud has to offer - Avoid Common Pitfalls. >>> Read the Whitepaper. >>> >>> http://pubads.g.doubleclick.net/gampad/clk?id=121051231&iu=/4140/ostg.clktrk >>> - >>> Forwarded by the Webmin mailing list at >>> web...@li... >>> To remove yourself from this list, go to >>> http://lists.sourceforge.net/lists/listinfo/webadmin-list >>> >> >> >> >> -- >> Best Regards >> Muhammad Bashir Al-Noimi >> -- WBR, Andrey Repin (anr...@fr...) 15.02.2014, <23:28> Sorry for my terrible english... |
