From mboxrd@z Thu Jan 1 00:00:00 1970 From: "Mark E. Donaldson" Subject: RE: iptables acting as a TCP proxy Date: Mon, 15 Mar 2004 19:02:24 -0800 Sender: netfilter-admin@lists.netfilter.org Message-ID: <200403160302.i2G32FsV011641@server5.bandwidthco.com> References: <200403151259.38056.Antony@Soft-Solutions.co.uk> Reply-To: Mime-Version: 1.0 Content-Transfer-Encoding: 7bit Return-path: In-Reply-To: <200403151259.38056.Antony@Soft-Solutions.co.uk> Errors-To: netfilter-admin@lists.netfilter.org List-Help: List-Post: List-Subscribe: , List-Id: List-Unsubscribe: , List-Archive: Content-Type: text/plain; charset="us-ascii" To: 'Antony Stone' , 'Netfilter Mailing List' -----Original Message----- From: netfilter-admin@lists.netfilter.org [mailto:netfilter-admin@lists.netfilter.org] On Behalf Of Antony Stone Sent: Monday, March 15, 2004 5:00 AM To: Netfilter Mailing List Subject: Re: iptables acting as a TCP proxy On Monday 15 March 2004 12:43 pm, Gavin Hamill wrote: > On Monday 15 March 2004 11:28, Antony Stone wrote: > > iptables -A PREROUTING -p tcp --dport 80 -d old.ip.add.ress -j DNAT > > --to new.ip.add.ress iptables -A FORWARD -p tcp --dport 80 -d > > new.ip.add.ress -j ACCEPT iptables -A POSTROUTING -p tcp --dport 80 > > -d new.ip.add.ress -j SNAT --to my.ip.add.ress > > A thousand thanks, Antony - you're a giraffe among men - so walk tall > :) Er, thanks. Never been called that before, but I'll do my best :) Antony. -- Abandon hope, all ye who enter here. You'll feel much better about things once you do. Please reply to the list; please don't CC me.