iptables problem

Linux Netfilter discussions
 help / color / mirror / Atom feed

* iptables problem
@ 2003-05-13 15:13 hare ram
  2003-05-13 17:02 ` Guilherme Viebig
  0 siblings, 1 reply; 5+ messages in thread
From: hare ram @ 2003-05-13 15:13 UTC (permalink / raw)
  To: netfilter

Hi

i have installed iptables 1.2.8a in RH 9.0
and installed POM tooo
when i do

[root@ root]# iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j
REDIRECT --to-port 3128
iptables: Invalid argument

what is wrong
i dont see any problem, but iam getting this error
what could be the problem

hare




^ permalink raw reply	[flat|nested] 5+ messages in thread

* Re: iptables problem
  2003-05-13 15:13 iptables problem hare ram
@ 2003-05-13 17:02 ` Guilherme Viebig
  2003-05-14 11:17   ` hare ram
  0 siblings, 1 reply; 5+ messages in thread
From: Guilherme Viebig @ 2003-05-13 17:02 UTC (permalink / raw)
  To: netfilter

Change REDIRECT to DNAT
----- Original Message ----- 
From: "hare ram" <hareram@sol.net.in>
To: <netfilter@lists.samba.org>
Sent: Tuesday, May 13, 2003 12:13 PM
Subject: iptables problem


> Hi
> 
> i have installed iptables 1.2.8a in RH 9.0
> and installed POM tooo
> when i do
> 
> [root@ root]# iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j
> REDIRECT --to-port 3128
> iptables: Invalid argument
> 
> what is wrong
> i dont see any problem, but iam getting this error
> what could be the problem
> 
> hare
> 
> 
> 



^ permalink raw reply	[flat|nested] 5+ messages in thread

* Re: iptables problem
  2003-05-13 17:02 ` Guilherme Viebig
@ 2003-05-14 11:17   ` hare ram
  2003-05-14 11:38     ` Bikrant Neupane
  2003-05-14 13:29     ` udp packet on port 111 Massimo Balestra
  0 siblings, 2 replies; 5+ messages in thread
From: hare ram @ 2003-05-14 11:17 UTC (permalink / raw)
  To: Guilherme Viebig, netfilter

still same problem

hare
----- Original Message -----
From: "Guilherme Viebig" <guilherme@plannercorretora.com.br>
To: <netfilter@lists.samba.org>
Sent: Tuesday, May 13, 2003 10:32 PM
Subject: Re: iptables problem


> Change REDIRECT to DNAT
> ----- Original Message -----
> From: "hare ram" <hareram@sol.net.in>
> To: <netfilter@lists.samba.org>
> Sent: Tuesday, May 13, 2003 12:13 PM
> Subject: iptables problem
>
>
> > Hi
> >
> > i have installed iptables 1.2.8a in RH 9.0
> > and installed POM tooo
> > when i do
> >
> > [root@ root]# iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j
> > REDIRECT --to-port 3128
> > iptables: Invalid argument
> >
> > what is wrong
> > i dont see any problem, but iam getting this error
> > what could be the problem
> >
> > hare
> >
> >
> >
>
>
>



^ permalink raw reply	[flat|nested] 5+ messages in thread

* Re: iptables problem
  2003-05-14 11:17   ` hare ram
@ 2003-05-14 11:38     ` Bikrant Neupane
  2003-05-14 13:29     ` udp packet on port 111 Massimo Balestra
  1 sibling, 0 replies; 5+ messages in thread
From: Bikrant Neupane @ 2003-05-14 11:38 UTC (permalink / raw)
  To: netfilter

If you are trying to redirect web traffic  to squid proxy then you can try
iptables -t nat -A PREROUTING -p tcp --dport 80 -j DNAT --to-destination 
a.b.c.d:3128

Replace PREROUTING with OUTPUT if you are trying to redirect traffice 
originating from the same machine where you want the redirect to take 
place.

regards,
Bikrant

hare ram wrote:

>still same problem
>
>hare
>----- Original Message -----
>From: "Guilherme Viebig" <guilherme@plannercorretora.com.br>
>To: <netfilter@lists.samba.org>
>Sent: Tuesday, May 13, 2003 10:32 PM
>Subject: Re: iptables problem
>
>
>  
>
>>Change REDIRECT to DNAT
>>----- Original Message -----
>>From: "hare ram" <hareram@sol.net.in>
>>To: <netfilter@lists.samba.org>
>>Sent: Tuesday, May 13, 2003 12:13 PM
>>Subject: iptables problem
>>
>>
>>    
>>
>>>Hi
>>>
>>>i have installed iptables 1.2.8a in RH 9.0
>>>and installed POM tooo
>>>when i do
>>>
>>>[root@ root]# iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j
>>>REDIRECT --to-port 3128
>>>iptables: Invalid argument
>>>
>>>what is wrong
>>>i dont see any problem, but iam getting this error
>>>what could be the problem
>>>
>>>hare
>>>
>>>
>>>
>>>      
>>>
>>
>>    
>>
>
>
>
>
>  
>




^ permalink raw reply	[flat|nested] 5+ messages in thread

* udp packet on port 111
  2003-05-14 11:17   ` hare ram
  2003-05-14 11:38     ` Bikrant Neupane
@ 2003-05-14 13:29     ` Massimo Balestra
  1 sibling, 0 replies; 5+ messages in thread
From: Massimo Balestra @ 2003-05-14 13:29 UTC (permalink / raw)
  To: netfilter

Hi everybody,

I have problem with iptables and maybe somebody can help me to find a
solution.

I need to connect to another network through a ppp connection.

What I did has been: to set the ppp connection and set iptables to forward
the packets with the remote network as destination to the ppp.
Then I set the route of my pc using the linux machine as the gateway.

Everything works well, http, ssh, xwindows, is all OK. I can also enter into
a Cisco VPN in the remote network.
There is only one application that does not work.

I don't know how this application is done. I simply did a tcpdump while I
was using this application.
Note: the ping from my pc to the destination server works. Only this
application doesn't. Unfortunately it is a windows application. Looks that
this application receives and sends udp packets but they are not forwarded
correctly.

Here is the tcpdump / windump result. (sunrpc is port 111)

------------------------------
on the gateway machine:
tcpdump -i ppp0

15:02:30.528227 10.5.17.21.1491 > 10.21.109.84.sunrpc:  udp 56
15:02:30.675801 10.21.109.46.sunrpc > 10.5.17.21.1491:  udp 28 (DF)
15:02:30.675840 10.5.17.21 > 10.21.109.46: icmp: 10.5.17.21 udp port 1491
unreachable [tos 0xc0]
15:02:45.530046 10.5.17.21.1491 > 10.21.109.84.sunrpc:  udp 56
15:02:45.728534 10.21.109.46.sunrpc > 10.5.17.21.1491:  udp 28 (DF)
15:02:45.728564 10.5.17.21 > 10.21.109.46: icmp: 10.5.17.21 udp port 1491
unreachable [tos 0xc0]
15:03:15.548364 10.5.17.21.1491 > 10.21.109.84.sunrpc:  udp 56
15:03:15.683612 10.21.109.46.sunrpc > 10.5.17.21.1491:  udp 28 (DF)
15:03:15.683641 10.5.17.21 > 10.21.109.46: icmp: 10.5.17.21 udp port 1491
unreachable [tos 0xc0]

-----------------------
On my pc:
windump -p udp
15:03:10.320679 IP platone.replynet.prv.1491 > ttsat.111: udp 56
15:03:25.319739 IP platone.replynet.prv.1491 > ttsat.111: udp 56
15:03:55.332502 IP platone.replynet.prv.1491 > ttsat.111: udp 56

Can someone help me?
Thanks

Massimo

^ permalink raw reply	[flat|nested] 5+ messages in thread

end of thread, other threads:[~2003-05-14 13:29 UTC | newest]

Thread overview: 5+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2003-05-13 15:13 iptables problem hare ram
2003-05-13 17:02 ` Guilherme Viebig
2003-05-14 11:17   ` hare ram
2003-05-14 11:38     ` Bikrant Neupane
2003-05-14 13:29     ` udp packet on port 111 Massimo Balestra

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox