From: Rasca <rasca-ml@triad.de>
To: "Caracal - G. Hostettler" <100112_2660@bluewin.ch>
Cc: netfilter list <netfilter@lists.netfilter.org>
Subject: Re: port forwarding with one interface to trace traffic?
Date: Wed, 21 Jan 2004 17:46:50 +0100 [thread overview]
Message-ID: <400EACFA.2030405@triad.de> (raw)
In-Reply-To: <00bb01c3e039$ed0b6310$017ca8c0@lucens.caracal.ch>
Hi,
Caracal - G. Hostettler schrieb:
> Just one silly question:
>
> Do you have a "1" in /proc/sys/net/ipv4/ip_forward ?
> If a zero, nothing will go through.
yep, of course it's setup to "1".
> BTW, I never used such a config with only on interface.
may be it's not possible, or the setup for only one
interface is more complicated!?
> I am *not* a guru, but having a mask of /32 instead of /24 seems strange to
> me.
as long as I know it means no subnet, just the IP for
the host..
> What is the mask on your printer and on your Mc ?
class C (255.255.255.0)
cu
rasca
>>
>>I want to setup a specific port forwarding to trace the
>>ip traffic between a macos9 and a hp net printer to debug
>>a spooler problem.
>>
>>I thought the port forwarding feature of linux/iptables
>>would be nice to do that. But until now I wasn't able
>>to get it running ;-(
>>
>>May be some one can help here. The setup is quite simple.
>>
>>* one class C net (192.168.10.0)
>>* a linux box with one interface (eth0), kernel 2.4.24
>> and iptables 1.2.9 (192.168.10.156
>>
>>* macos9 machine with 9.2.x (192.168.10...)
>>
>>* HP laser printer with network interface (192.168.10.9)
>>
>>I want to configure the Mac to print to the linux box.
>>The linux box should do port forwarding to the hp printer.
>>So I can use "ethereal" or what ever to dump the traffic.
>>
>>Because it's not a firewall all chains have as default
>>"accept".
>>
>>I added the following rule (which seems not to be enough,
>>cause the printing freezes):
>>
>>iptables -t nat -A PREROUTING -p tcp --dport 515 \
>>-d 192.168.10.156/32 -j DNAT --to-dest 192.168.10.9:515
>>
>>Any ideas?
>>
>>thx + cu
>> rasca
>>
>>
>>--
>>_______________________________________________________________
>>| Triad Berlin Projektgesellschaft mbH | http://www.triad.de/ |
>>
>>
>
>
--
_______________________________________________________________
| Triad Berlin Projektgesellschaft mbH | http://www.triad.de/ |
next prev parent reply other threads:[~2004-01-21 16:46 UTC|newest]
Thread overview: 8+ messages / expand[flat|nested] mbox.gz Atom feed top
2004-01-21 15:45 port forwarding with one interface to trace traffic? Rasca
2004-01-21 16:16 ` Caracal - G. Hostettler
2004-01-21 16:46 ` Rasca [this message]
2004-01-21 22:07 ` Antony Stone
2004-01-22 13:16 ` Jeffrey Laramie
2004-01-22 13:36 ` Rasca
2004-01-22 13:39 ` PPTP and GRE Jan Kaastrup
-- strict thread matches above, loose matches on Subject: below --
2004-01-22 15:33 port forwarding with one interface to trace traffic? Piers Finlayson
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=400EACFA.2030405@triad.de \
--to=rasca-ml@triad.de \
--cc=100112_2660@bluewin.ch \
--cc=netfilter@lists.netfilter.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox