RE: Web server access

From mboxrd@z Thu Jan 1 00:00:00 1970 From: =?iso-8859-1?B?Sm9yZ2UgVW1h8WE=?= Subject: Web server access Date: Mon, 14 Jul 2003 09:10:00 -0600 Sender: netfilter-admin@lists.netfilter.org Message-ID: Mime-Version: 1.0 Return-path: Errors-To: netfilter-admin@lists.netfilter.org List-Help: List-Post: List-Subscribe: , List-Id: List-Unsubscribe: , List-Archive: Content-Type: text/plain; charset="iso-8859-1"; format="flowed" Content-Transfer-Encoding: quoted-printable To: netfilter@lists.netfilter.org I have a LINUX box with a public ip. I need to use iptables to send all the= =20 packages that come to the 80 port to my Web server in Windows. I am using=20 this chain: iptables -t nat -A PREROUTING -p tcp -d $ipPUBLIC --dport 80 -j DNAT=20 --to-destination $ipWEBSERVER I tried to access my web page from outside but does not work I will appreciate your help Thanks _________________________________________________________________ Charla con tus amigos en l=EDnea mediante MSN Messenger:=20 http://messenger.yupimsn.com/ From mboxrd@z Thu Jan 1 00:00:00 1970 From: Eugene Joubert Subject: RE: Web server access Date: Tue, 15 Jul 2003 14:44:30 +0200 Sender: netfilter-admin@lists.netfilter.org Message-ID: <20B8C822B36ED71199D0005004D778B81512@TELECOMS04> Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="----_=_NextPart_001_01C34ACE.D56880E0" Return-path: Errors-To: netfilter-admin@lists.netfilter.org List-Help: List-Post: List-Subscribe: , List-Id: List-Unsubscribe: , List-Archive: To: =?iso-8859-1?Q?=27Jorge_Uma=F1a=27?= , netfilter@lists.netfilter.org This message is in MIME format. Since your mail reader does not understand this format, some or all of this message may not be legible. ------_=_NextPart_001_01C34ACE.D56880E0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Is your web server gateway set to your be that of your linux box? Have you tried using tcpdump to "see" what is happening with those = packets on that specific port? -----Original Message----- From: Jorge Uma=F1a [mailto:jorgeaub@hotmail.com]=20 Sent: 14/07/2003 05:10 PM To: netfilter@lists.netfilter.org Subject: Web server access I have a LINUX box with a public ip. I need to use iptables to send all = the=20 packages that come to the 80 port to my Web server in Windows. I am = using=20 this chain: iptables -t nat -A PREROUTING -p tcp -d $ipPUBLIC --dport 80 -j DNAT=20 --to-destination $ipWEBSERVER I tried to access my web page from outside but does not work I will appreciate your help Thanks _________________________________________________________________ Charla con tus amigos en l=EDnea mediante MSN Messenger:=20 http://messenger.yupimsn.com/ ------_=_NextPart_001_01C34ACE.D56880E0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable RE: Web server access

Is your web server gateway set to your be that of = your linux box?

Have you tried using tcpdump to "see" what = is happening with those packets on that specific port?

-----Original Message-----
From: Jorge Uma=F1a [mailto:jorgeaub@hotmail.com] =
Sent: 14/07/2003 05:10 PM
To: netfilter@lists.netfilter.org
Subject: Web server access

I have a LINUX box with a public ip. I need to use = iptables to send all the
packages that come to the 80 port to my Web server = in Windows. I am using
this chain:
iptables -t nat -A PREROUTING -p tcp -d $ipPUBLIC = --dport 80 -j DNAT
--to-destination $ipWEBSERVER

I tried to access my web page from outside but does = not work

I will appreciate your help
Thanks

_______________________________________________________________= __
Charla con tus amigos en l=EDnea mediante MSN = Messenger:
http://messenger.yupimsn.com/

------_=_NextPart_001_01C34ACE.D56880E0-- From mboxrd@z Thu Jan 1 00:00:00 1970 From: Ray Leach Subject: Re: Web server access Date: 15 Jul 2003 14:52:17 +0200 Sender: netfilter-admin@lists.netfilter.org Message-ID: <1058273537.13995.1.camel@raylinux.internal> References: Mime-Version: 1.0 Content-Transfer-Encoding: quoted-printable Return-path: In-Reply-To: Errors-To: netfilter-admin@lists.netfilter.org List-Help: List-Post: List-Subscribe: , List-Id: List-Unsubscribe: , List-Archive: Content-Type: text/plain; charset="iso-8859-1" To: Netfilter Mailing List You also need to forward rules to forward the traffic to and from your webserver. On Mon, 2003-07-14 at 17:10, Jorge Uma=F1a wrote: > I have a LINUX box with a public ip. I need to use iptables to send all t= he=20 > packages that come to the 80 port to my Web server in Windows. I am using= =20 > this chain: > iptables -t nat -A PREROUTING -p tcp -d $ipPUBLIC --dport 80 -j DNAT=20 > --to-destination $ipWEBSERVER >=20 > I tried to access my web page from outside but does not work >=20 > I will appreciate your help > Thanks >=20 > _________________________________________________________________ > Charla con tus amigos en l=EDnea mediante MSN Messenger:=20 > http://messenger.yupimsn.com/ --=20 -- Raymond Leach Network Support Specialist http://www.knowledgefactory.co.za "lynx -source http://www.rchq.co.za/raymondl.asc | gpg --import" Key fingerprint =3D 7209 A695 9EE0 E971 A9AD 00EE 8757 EE47 F06F FB28 -- From mboxrd@z Thu Jan 1 00:00:00 1970 From: Michael Martinez Subject: Re: Web server access Date: 15 Jul 2003 10:19:05 -0400 Sender: netfilter-admin@lists.netfilter.org Message-ID: <1058278745.1356.9.camel@localhost.localdomain> References: Mime-Version: 1.0 Content-Transfer-Encoding: quoted-printable Return-path: In-Reply-To: Errors-To: netfilter-admin@lists.netfilter.org List-Help: List-Post: List-Subscribe: , List-Id: List-Unsubscribe: , List-Archive: Content-Type: text/plain; charset="utf-8" To: Jorge =?ISO-8859-1?Q?Uma=F1a?= Cc: netfilter@lists.netfilter.org First make sure the windows box port 80 can be accessed from your Linux box: 1. log on to your linux box 2. telnet windows-box 80 Then, make sure your Linux box port 80 is accessible from the Internet: 3. go to http://centralops.net/co/ 4. use the "tcpquery" function to do a http query on your Linux box Then, configure iptables on your Linux box. Configure to log port 80 rejects and redirects. Use the logging info to make sure the packets are being redirected. mike On Mon, 2003-07-14 at 11:10, Jorge Uma=C3=B1a wrote: > I have a LINUX box with a public ip. I need to use iptables to send all t= he=20 > packages that come to the 80 port to my Web server in Windows. I am using= =20 > this chain: > iptables -t nat -A PREROUTING -p tcp -d $ipPUBLIC --dport 80 -j DNAT=20 > --to-destination $ipWEBSERVER >=20 > I tried to access my web page from outside but does not work >=20 > I will appreciate your help > Thanks >=20 > _________________________________________________________________ > Charla con tus amigos en l=C3=ADnea mediante MSN Messenger:=20 > http://messenger.yupimsn.com/ >=20 >=20 --=20 Michael Martinez Linux System Administrator ISTM/CSREES/USDA