All of lore.kernel.org
 help / color / mirror / Atom feed
From: "Andrew St. Jean" <ast.000@sympatico.ca>
To: netfilter@lists.netfilter.org
Subject: trying to get oddball setup to work
Date: Sat, 26 Jul 2003 09:18:52 -0400	[thread overview]
Message-ID: <3F227FBC.6000403@sympatico.ca> (raw)

I'm hoping someone can tell me if what I'm trying to do is possible and 
if so, how.

Here's a picture of my network topology:

machine x-------internet---------machine y-----private LAN----host a/b/c

Machine x has one interface with a public static IP.
Machine y has two interfaces, one with a public dynamic IP and the other 
with a private static IP.

Both machines x and y have iptables installed and running.
I have an ipsec tunnel (using FreeS/Wan) working between machines x and 
y. With this tunnel I can ping any of the hosts on my private LAN from 
machine x. I can also mount a shared partition from, say, host b onto 
machine x. I include this just to show that the ipsec tunnel is working.

What I want to do is use NAT to forward certain ports on machine x to 
machines on my private LAN. Right now, if I open a port in iptables on 
machine x, I can connect to machine x from the internet on that port. If 
I try to forward the port to host c, packets seem to disappear on 
machine x. I can see the packets arrive at machine x using tcpdump but 
nothing goes out again.

Thanks for any help provided.

Andrew


             reply	other threads:[~2003-07-26 13:18 UTC|newest]

Thread overview: 2+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2003-07-26 13:18 Andrew St. Jean [this message]
2003-07-26 15:00 ` OT: ssh portforwarding, was: trying to get oddball setup to work Arnt Karlsen

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=3F227FBC.6000403@sympatico.ca \
    --to=ast.000@sympatico.ca \
    --cc=ast.000-dated-1059657524.a03b81@sympatico.ca \
    --cc=netfilter@lists.netfilter.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line before the message body. 
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.