* port mapping ANY:95 to originalIP:80
@ 2005-04-30 16:52 Efraim
2005-04-30 16:59 ` Port " Efraim
2005-05-01 22:07 ` port " Taylor, Grant
0 siblings, 2 replies; 4+ messages in thread
From: Efraim @ 2005-04-30 16:52 UTC (permalink / raw)
To: netfilter
Hi,
I'm using my linux box as a router and I have an application that is
make all the request in port 95.
I need to make an iptables rule that will change the original port of
any destination ip addres to 80.
I know how to do it for a specific destination ip but I could not find
the way to do it for any destination ip.
iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 95 -j DNAT --to
66.249.87.99:80
66.249.87.99 is the Google ip, but I need the rule to work for any ip.
Something like:
iptables -t nat -A PREROUTING -i eth0 -p tcp -d ANY --dport 95 -j DNAT
--to ANY:80
I know that it is possible to do with checkpoint firewall but it is a
little expensive...
^ permalink raw reply [flat|nested] 4+ messages in thread
* Port mapping ANY:95 to originalIP:80
2005-04-30 16:52 port mapping ANY:95 to originalIP:80 Efraim
@ 2005-04-30 16:59 ` Efraim
2005-05-01 22:07 ` port " Taylor, Grant
1 sibling, 0 replies; 4+ messages in thread
From: Efraim @ 2005-04-30 16:59 UTC (permalink / raw)
To: netfilter
Hi,
I'm using my linux box as a router and I have an application that is
make all the request in port 95.
I need to make an iptables rule that will change the original port of
any destination ip addres to 80.
I know how to do it for a specific destination ip but I could not find
the way to do it for any destination ip.
iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 95 -j DNAT --to
66.249.87.99:80
66.249.87.99 is the Google ip, but I need the rule to work for any ip.
Something like:
iptables -t nat -A PREROUTING -i eth0 -p tcp -d ANY --dport 95 -j DNAT
--to ANY:80
I know that it is possible to do with checkpoint firewall but it is a
little expensive...
^ permalink raw reply [flat|nested] 4+ messages in thread
* RE: Port mapping ANY:95 to originalIP:80
@ 2005-05-01 8:31 Sietse van Zanen
0 siblings, 0 replies; 4+ messages in thread
From: Sietse van Zanen @ 2005-05-01 8:31 UTC (permalink / raw)
To: Efraim, netfilter
iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 95 -j DNAT
--to-destination :80
-----Original Message-----
From: netfilter-bounces@lists.netfilter.org
[mailto:netfilter-bounces@lists.netfilter.org] On Behalf Of Efraim
Sent: Saturday, April 30, 2005 6:59 PM
To: netfilter@lists.netfilter.org
Subject: Port mapping ANY:95 to originalIP:80
Hi,
I'm using my linux box as a router and I have an application that is
make all the request in port 95.
I need to make an iptables rule that will change the original port of
any destination ip addres to 80.
I know how to do it for a specific destination ip but I could not find
the way to do it for any destination ip.
iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 95 -j DNAT --to
66.249.87.99:80
66.249.87.99 is the Google ip, but I need the rule to work for any ip.
Something like:
iptables -t nat -A PREROUTING -i eth0 -p tcp -d ANY --dport 95 -j DNAT
--to ANY:80
I know that it is possible to do with checkpoint firewall but it is a
little expensive...
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: port mapping ANY:95 to originalIP:80
2005-04-30 16:52 port mapping ANY:95 to originalIP:80 Efraim
2005-04-30 16:59 ` Port " Efraim
@ 2005-05-01 22:07 ` Taylor, Grant
1 sibling, 0 replies; 4+ messages in thread
From: Taylor, Grant @ 2005-05-01 22:07 UTC (permalink / raw)
To: netfilter
Hm, a touch quick on the draw to repost. Sietse van Zanen posted a reply (https://lists.netfilter.org/pipermail/netfilter/2005-May/060125.html) to your earlier post with a solution that I just tested that did work for me.
Grant. . . .
Efraim wrote:
> Hi,
> I'm using my linux box as a router and I have an application that is
> make all the request in port 95.
> I need to make an iptables rule that will change the original port of
> any destination ip addres to 80.
> I know how to do it for a specific destination ip but I could not find
> the way to do it for any destination ip.
>
> iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 95 -j DNAT --to
> 66.249.87.99:80
>
> 66.249.87.99 is the Google ip, but I need the rule to work for any ip.
> Something like:
>
> iptables -t nat -A PREROUTING -i eth0 -p tcp -d ANY --dport 95 -j DNAT
> --to ANY:80
>
> I know that it is possible to do with checkpoint firewall but it is a
> little expensive...
^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2005-05-01 22:07 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2005-04-30 16:52 port mapping ANY:95 to originalIP:80 Efraim
2005-04-30 16:59 ` Port " Efraim
2005-05-01 22:07 ` port " Taylor, Grant
-- strict thread matches above, loose matches on Subject: below --
2005-05-01 8:31 Port " Sietse van Zanen
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.