From: cj y. <cj...@yo...> - 2014-02-15 19:57:15
|
It actually is a Webmin question. Whether or not it's a great idea is not the question. He is able to do it manually but not in Webmin. That's the question he wants resolved. Not whether it's a smart thing to do or not. I would also ask some clarification of why it's not a smart thing to do. I am interested in iptable configurations and am curious as to what's the issue that creates a security hole. explanation please!! On 02/15/2014 11:30 AM, Andrey Repin wrote: > Greetings, Webmin users list! > >> Come on guys, may some one help me here... please. > 1. Without full dump of the rules this can't be solved. > 2. Following 1, this is not a webmin question. This is generic netfilter/iptables question. > 3. Your rules have an error that will cost you a headache at least. > >> On Wed, Feb 12, 2014 at 5:21 PM, Muhammad Bashir Al-Noimi <mb...@gm... >>> wrote: >>> I don't mind about the security because I'm doing it in local network. All >>> what I'm asking why this work fine with standard iptables while it doesn't >>> under Webmin!!! >>> >>> >>> On Sat, Feb 8, 2014 at 8:29 PM, Andrey Repin <anr...@fr...>wrote: >>> >>>> Greetings, Webmin users list! >>>> >>>>> I want to redirect all requests on port 3389 to specified IP and port >>>>> 192.168.0.3:3389 for that I use the following in iptables (I tested it >>>>> and I found it works fine): >>>>> --- >>>>> sysctl net.ipv4.ip_forward=1 >>>>> iptables -t nat -A PREROUTING -p tcp --dport 3389 -j DNAT >>>>> --to-destination 192.168.0.3:3389 >>>>> iptables -t nat -A POSTROUTING -j MASQUERADE >>>> I already said, don't do this. >>>> With this rule, you're creating a security hole in your system and in >>>> systems >>>> connected with yours, as it tricking connected systems to believe that all >>>> traffic passing through your system is originated from your system. >>>> >>>> >>>> -- >>>> WBR, >>>> Andrey Repin (anr...@fr...) 08.02.2014, <23:27> >>>> >>>> Sorry for my terrible english... >>>> >>>> >>>> >>>> ------------------------------------------------------------------------------ >>>> Managing the Performance of Cloud-Based Applications >>>> Take advantage of what the Cloud has to offer - Avoid Common Pitfalls. >>>> Read the Whitepaper. >>>> >>>> http://pubads.g.doubleclick.net/gampad/clk?id=121051231&iu=/4140/ostg.clktrk >>>> - >>>> Forwarded by the Webmin mailing list at >>>> web...@li... >>>> To remove yourself from this list, go to >>>> http://lists.sourceforge.net/lists/listinfo/webadmin-list >>>> >>> >>> >>> -- >>> Best Regards >>> Muhammad Bashir Al-Noimi >>> > > > > > -- > WBR, > Andrey Repin (anr...@fr...) 15.02.2014, <23:28> > > Sorry for my terrible english... > > > ------------------------------------------------------------------------------ > Android apps run on BlackBerry 10 > Introducing the new BlackBerry 10.2.1 Runtime for Android apps. > Now with support for Jelly Bean, Bluetooth, Mapview and more. > Get your Android app in front of a whole new audience. Start now. > http://pubads.g.doubleclick.net/gampad/clk?id=124407151&iu=/4140/ostg.clktrk > - > Forwarded by the Webmin mailing list at web...@li... > To remove yourself from this list, go to > http://lists.sourceforge.net/lists/listinfo/webadmin-list -- |