From mboxrd@z Thu Jan 1 00:00:00 1970 From: Jeff Largent Subject: Re: Port forwarding how ?? Date: Wed, 15 Jan 2003 12:16:57 -0500 Sender: linux-admin-owner@vger.kernel.org Message-ID: <3E259789.5070802@imagelinks.com> References: <1042586197.28248.11.camel@marvin.bl.gozostudios.com> Mime-Version: 1.0 Content-Transfer-Encoding: 7bit Return-path: In-Reply-To: <1042586197.28248.11.camel@marvin.bl.gozostudios.com> List-Id: Content-Type: text/plain; charset="us-ascii"; format="flowed" To: Sasa Ugrenovic Cc: linux-admin@vger.kernel.org One of the best tools for debuging is tcpdump. Run one copy on the machine your trying to connect from, two on the machine with iptables and a final copy on the machine you forwarding to. on machine trying to connect from. tcpdump src port 3306 on machine with iptables tcpdump src host dest port 3306 and tcpdump src host dest host 192.168.0.14 dest port 3306 on 192.168.0.14 tcpdump scr host dest port 3306 on the machine with iptables you should see the connect from the machine you are trying to connect from, and see it go out to 192.168.0.14 on the machine connecting from make sure any response you get back is from the ip of the machine running iptables and not the 192.168.0.14 ip. Jeff Sasa Ugrenovic wrote: > Anyone configured port forwarding that worked ? > > I was reading lot's of howto documents, but i was unable to configure > that thing. > > > iptables -t nat -A PREROUTING -i $OUTSIDE -p tcp --dport 3306 -j DNAT > --to 192.168.0.14 > > This is how i configured it .. but it doesn't work .. anyone have any > idea or something .. ? > > Thanks. > > > - > To unsubscribe from this list: send the line "unsubscribe linux-admin" in > the body of a message to majordomo@vger.kernel.org > More majordomo info at http://vger.kernel.org/majordomo-info.html > > -- Jeff Largent ImageLinks, Inc. Sr System Admin Melbourne, Fl 32935 (321) 253-0011 fax:(321) 253-5559