From mboxrd@z Thu Jan  1 00:00:00 1970
From: Rasca <rasca-ml@triad.de>
Subject: Re: port forwarding with one interface to trace traffic?
Date: Wed, 21 Jan 2004 17:46:50 +0100
Sender: netfilter-admin@lists.netfilter.org
Message-ID: <400EACFA.2030405@triad.de>
References: <400E9EB3.4070309@triad.de> <00bb01c3e039$ed0b6310$017ca8c0@lucens.caracal.ch>
Mime-Version: 1.0
Content-Transfer-Encoding: 7bit
Return-path: <netfilter-admin@lists.netfilter.org>
In-Reply-To: <00bb01c3e039$ed0b6310$017ca8c0@lucens.caracal.ch>
Errors-To: netfilter-admin@lists.netfilter.org
List-Help: <mailto:netfilter-request@lists.netfilter.org?subject=help>
List-Post: <mailto:netfilter@lists.netfilter.org>
List-Subscribe: <https://lists.netfilter.org/mailman/listinfo/netfilter>,
	<mailto:netfilter-request@lists.netfilter.org?subject=subscribe>
List-Id: <netfilter.vger.kernel.org>
List-Unsubscribe: <https://lists.netfilter.org/mailman/listinfo/netfilter>,
	<mailto:netfilter-request@lists.netfilter.org?subject=unsubscribe>
List-Archive: <https://lists.netfilter.org/pipermail/netfilter/>
Content-Type: text/plain; charset="us-ascii"; format="flowed"
To: "Caracal - G. Hostettler" <100112_2660@bluewin.ch>
Cc: netfilter list <netfilter@lists.netfilter.org>

Hi,

Caracal - G. Hostettler schrieb:
> Just one silly question:
> 
> Do you have a "1" in /proc/sys/net/ipv4/ip_forward ?
> If a zero, nothing will go through.

yep, of course it's setup to "1".

> BTW, I never used such a config with only on interface.

may be it's not possible, or the setup for only one
interface is more complicated!?

> I am *not* a guru, but having a mask of /32 instead of /24 seems strange to
> me.

as long as I know it means no subnet, just the IP for
the host..

> What is the mask on your printer and on your Mc ?

class C (255.255.255.0)

cu
  rasca

>>
>>I want to setup a specific port forwarding to trace the
>>ip traffic between a macos9 and a hp net printer to debug
>>a spooler problem.
>>
>>I thought the port forwarding feature of linux/iptables
>>would be nice to do that. But until now I wasn't able
>>to get it running ;-(
>>
>>May be some one can help here. The setup is quite simple.
>>
>>* one class C net (192.168.10.0)
>>* a linux box with one interface (eth0), kernel 2.4.24
>>   and iptables 1.2.9 (192.168.10.156
>>
>>* macos9 machine with 9.2.x (192.168.10...)
>>
>>* HP laser printer with network interface (192.168.10.9)
>>
>>I want to configure the Mac to print to the linux box.
>>The linux box should do port forwarding to the hp printer.
>>So I can use "ethereal" or what ever to dump the traffic.
>>
>>Because it's not a firewall all chains have as default
>>"accept".
>>
>>I added the following rule (which seems not to be enough,
>>cause the printing freezes):
>>
>>iptables -t nat -A PREROUTING -p tcp --dport 515 \
>>-d 192.168.10.156/32 -j DNAT --to-dest 192.168.10.9:515
>>
>>Any ideas?
>>
>>thx + cu
>>  rasca
>>
>>
>>-- 
>>_______________________________________________________________
>>| Triad Berlin Projektgesellschaft mbH | http://www.triad.de/ |
>>
>>
> 
> 


-- 
_______________________________________________________________
| Triad Berlin Projektgesellschaft mbH | http://www.triad.de/ |