From mboxrd@z Thu Jan 1 00:00:00 1970 From: "Pavan Gokarn" Subject: DNAT Query Date: Thu, 27 Feb 2003 13:29:34 +0530 Sender: netfilter-devel-admin@lists.netfilter.org Message-ID: <007001c2de36$2af03220$e11310ac@techknowledge.ws> Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_006D_01C2DE64.44949800" Return-path: To: Errors-To: netfilter-devel-admin@lists.netfilter.org List-Help: List-Post: List-Subscribe: , List-Unsubscribe: , List-Archive: List-Id: netfilter-devel.vger.kernel.org This is a multi-part message in MIME format. ------=_NextPart_000_006D_01C2DE64.44949800 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Hello, I am a system administrator new to IPTables, well pretty new. I have = an issue with DNAT. my DNAT does not work internally. let me give you = the configuration. I have a Firewall with 2 plumbed interface on the = same card. eth0=3D172.16.19.231 and eth0:a=3D10.1.1.25. i have enabled = ip_forward. now when i try to access a 10.0.0.0/8 ip address from = 172.16.19.0/24 (http) using DNAT on the firewall NATBox it does not = work. can you please give me a solution. the commands i issued are. # iptables -t nat -A PREROUTING -d 172.16.19.152 -p tcp --dport 8080 -j = DNAT --to 10.1.1.33:8080 #iptables -t nat -A POSTROUTING -d 10.1.1.33 -p tcp --dport 80 -j SNAT = 10.1.1.25 (DNAT in the same network is working though) can some one please help me with this. also i am writing a gui solution = using 'C' as a frontend to iptables tool. Making it much easier for = users to configure their firewall quickly. can someone give me the full = description of NETFILTER/IPTables extentions and options (manpages is = not enough) Thanx a ton Regards Pavan ------=_NextPart_000_006D_01C2DE64.44949800 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Hello,
    I am a system = administrator new=20 to IPTables, well pretty new. I have an issue with DNAT. my DNAT does = not work=20 internally. let me give you the configuration. I have a Firewall with 2 = plumbed=20 interface on the same card. eth0=3D172.16.19.231 and eth0:a=3D10.1.1.25. = i have=20 enabled ip_forward. now when i try to access a 10.0.0.0/8 ip address = from=20 172.16.19.0/24 (http) using DNAT on the firewall NATBox it does not = work. can=20 you please give me a solution. the commands i issued are.
# iptables -t nat -A PREROUTING -d = 172.16.19.152 -p=20 tcp --dport 8080 -j DNAT --to 10.1.1.33:8080
 
#iptables -t nat -A POSTROUTING -d 10.1.1.33 -p tcp --dport 80 -j = SNAT=20 10.1.1.25
 
(DNAT in the same network is working though)
 
can some one please help me with this. = also i am=20 writing a gui solution using 'C' as a frontend to iptables tool. Making = it much=20 easier for users to configure their firewall quickly. can someone give = me the=20 full description of NETFILTER/IPTables extentions and options (manpages = is not=20 enough)
 
Thanx a ton
Regards
Pavan
 ------=_NextPart_000_006D_01C2DE64.44949800--