From mboxrd@z Thu Jan 1 00:00:00 1970 From: ASC - Ronald Roeleveld Subject: RE: Port forward Date: Tue, 4 Feb 2003 14:11:10 +0100 Sender: netfilter-admin@lists.netfilter.org Message-ID: Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="----_=_NextPart_001_01C2CC4E.E29CFDD0" Return-path: Errors-To: netfilter-admin@lists.netfilter.org List-Help: List-Post: List-Subscribe: , List-Id: List-Unsubscribe: , List-Archive: To: 'Eugene Joubert' Cc: "'netfilter@lists.netfilter.org'" This message is in MIME format. Since your mail reader does not understand this format, some or all of this message may not be legible. ------_=_NextPart_001_01C2CC4E.E29CFDD0 Content-Type: text/plain; charset="iso-8859-1" Thanks a lot everyone for the emails... I did iptables -t nat --list and it now gives me this output: DNAT tcp -- anywhere anywhere tcp dpt:smtp to:192.168.22.6:25 But when I tried to telnet from another machine to 192.168.22.5 port 25 (the ip of the netfilter firewall/router) it didn't work at all..Do there has to be a line somewhere that says it's allowed to forward these connections? Regards, Ronald. -----Original Message----- From: Eugene Joubert [mailto:eugenej@centratel.co.za] Sent: dinsdag 4 februari 2003 11:41 To: 'ASC - Ronald Roeleveld'; Subject: RE: Port forward remember that you are using DNAT so you would have to specify the -t nat switch in your line. eg iptables -t nat -A PREROUTING -p tcp -s 0/0 --dport 25 -i eth0 -j DNAT --to 192.168.22.6:25 Hope this helps -----Original Message----- From: ASC - Ronald Roeleveld [mailto:r.roeleveld@ascinternational.nl] Sent: 04 02 2003 12:31 PM To: 'netfilter@lists.netfilter.org' Subject: Port forward Hi all, Iam trying to set up a port forward for several hours now, but I don't seem to get it working right. When I type the following command: iptables -A PREROUTING -p tcp --destination-port 25 -i eth0 -j DNAT --to-destination 192.168.22.6:25 I get this output: iptables: Invalid argument I did do iptables -X PREROUTING so the chain does exist. Can anyone please help me out.. What I want is that all incoming connections on eth0 on port 25 are routed to another machine on the internal network 192.168.22.6 Thanks in advance, Ronald Roeleveld System Administrator ASCINTERNATIONAL Vlietweg 17c, 2266 KA, Leidschendam, The Netherlands Tel. +31 (0)70 3178400, Fax +31 (0)70 3204760 E-mail: r.roeleveld@ascinternational.nl , Website: http://www.ascinternational.nl ------_=_NextPart_001_01C2CC4E.E29CFDD0 Content-Type: text/html; charset="iso-8859-1" Message
Thanks a lot everyone for the emails...
I did iptables -t nat --list and it now gives me this output:
DNAT       tcp  --  anywhere             anywhere           tcp dpt:smtp to:192.168.22.6:25
But when I tried to telnet from another machine to 192.168.22.5 port 25 (the ip of the netfilter firewall/router) it didn't work at all..Do there has to be a line somewhere that says it's allowed to forward these connections?
 
Regards,
 
Ronald.
-----Original Message-----
From: Eugene Joubert [mailto:eugenej@centratel.co.za]
Sent: dinsdag 4 februari 2003 11:41
To: 'ASC - Ronald Roeleveld';       
Subject: RE: Port forward

remember that you are using DNAT so you would have to specify the -t nat switch in your line.
 
eg
 
iptables -t nat -A PREROUTING -p tcp -s 0/0 --dport 25 -i eth0 -j DNAT --to 192.168.22.6:25
 
Hope this helps
-----Original Message-----
From: ASC - Ronald Roeleveld [mailto:r.roeleveld@ascinternational.nl]
Sent: 04 02 2003 12:31 PM
To: 'netfilter@lists.netfilter.org'
Subject: Port forward

Hi all,
 
Iam trying to set up a port forward for several hours now, but I don't seem to get it working right.
When I type the following command:
iptables -A PREROUTING -p tcp --destination-port 25 -i eth0 -j DNAT --to-destination 192.168.22.6:25
I get this output:
iptables: Invalid argument
I did do iptables -X PREROUTING so the chain does exist.
Can anyone please help me out..
What I want is that all incoming connections on eth0 on port 25 are routed to another machine on the internal network 192.168.22.6
 
Thanks in advance,

Ronald Roeleveld 
System Administrator 

ASCINTERNATIONAL
Vlietweg 17c, 2266 KA, Leidschendam, The Netherlands
Tel. +31 (0)70 3178400, Fax +31 (0)70 3204760
E-mail: r.roeleveld@ascinternational.nl, Website: http://www.ascinternational.nl

 
------_=_NextPart_001_01C2CC4E.E29CFDD0--