From: Michael Gale <mgale@utilitran.com>
To: "Örjan Persson" <orange@fobie.net>
Cc: netfilter@lists.netfilter.org
Subject: Re: TCP redirect external to external host
Date: Tue, 9 Dec 2003 12:49:30 -0700 [thread overview]
Message-ID: <20031209124930.79f9bb13.mgale@utilitran.com> (raw)
In-Reply-To: <20031209194019.GB17111@fobie.net>
hmmm.... what about ICMP redirect ?
I can not remember if the host you are redirecting to has to be on the same subnet as the client host :(
If so then it would not work.
Michael.
On Tue, 9 Dec 2003 20:40:19 +0100
Örjan Persson <orange@fobie.net> wrote:
> Antony Stone (Antony@Soft-Solutions.co.uk) wrote:
> >
> > If it is not true that the real source IP and the real destination IP exist on
> > the same interface of the netfilter machine, repost your query with a bit
> > more detail and we may be able to help futher.
> >
>
> The situation is that I have a hostname where there are both SMTP and
> DNS services atm. The mail service is beeing migrated to another host,
> and since I can't just change the IP for the hostname (would break DNS
> services) I would like to have a temporary redirect to the new
> mailservice for the SMTP-service, until the ppl using it has changed
> their mail settings to use the new hostname.
>
> So, I have two external host with two external IP's. They exists on the
> same subnet too. Both uses the same gateway.
>
> These are the rules I tried to use, which translates the users IP to the
> first servers IP:
> iptables -t nat -A PREROUTING -p tcp --dport 33 -i eth0 -j DNAT --to host2:44
> iptables -t nat -A POSTROUTING -d host2 -p tcp --dport 25 -j SNAT --to host1
>
> Hope that's enough information to get you into my problem!
>
> Thanks for letting me take your time! :)
>
--
Michael Gale
Network Administrator
Utilitran Corporation
next prev parent reply other threads:[~2003-12-09 19:49 UTC|newest]
Thread overview: 10+ messages / expand[flat|nested] mbox.gz Atom feed top
2003-12-09 19:04 TCP redirect external to external host Örjan Persson
2003-12-09 19:15 ` Antony Stone
2003-12-09 19:40 ` Örjan Persson
2003-12-09 19:49 ` Michael Gale [this message]
2003-12-09 19:56 ` Antony Stone
2003-12-09 20:11 ` Michael Gale
2003-12-09 19:49 ` Antony Stone
2003-12-09 20:05 ` Örjan Persson
[not found] ` <1070997211.2880.4.camel@pepelui.baicom.com>
2003-12-09 19:31 ` Örjan Persson
-- strict thread matches above, loose matches on Subject: below --
2003-12-09 19:20 Daniel Chemko
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20031209124930.79f9bb13.mgale@utilitran.com \
--to=mgale@utilitran.com \
--cc=netfilter@lists.netfilter.org \
--cc=orange@fobie.net \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox