From mboxrd@z Thu Jan 1 00:00:00 1970 From: Grant Taylor Subject: Re: DNAT'ing print from XP to Brother 2070N Date: Wed, 27 Aug 2008 11:36:09 -0500 Message-ID: <48B58279.2030607@riverviewtech.net> References: Mime-Version: 1.0 Content-Transfer-Encoding: 7bit Return-path: In-Reply-To: Sender: netfilter-owner@vger.kernel.org List-ID: Content-Type: text/plain; charset="us-ascii"; format="flowed" To: Mail List - Netfilter On 08/26/08 20:40, sean darcy wrote: > We're running XP in one office. I'd like to be able to print to a > "network ready" Brother 2070N in another office, and in my home. > > I can print to the 2070N over a local network using ipp ( > 10.10.11.151:631 ) and lpd ( 10.10.11.151:9100 ). > > In the office I have set up iptables like so: > > $IPT -t nat -A PREROUTING -d 10.10.11.151 -p tcp --dport 631 -j DNAT > --to $HOME_ADDRESS:631 > $IPT -A FORWARD -p tcp -m state --state NEW -d $HOME_ADDRESS --dport 631 > -j ACCEPT > > and set up my home iptables: > > $IPT -t nat -A PREROUTING -i $EXTIF -p tcp --dport 631 -j DNAT --to > 10.10.11.151:631 > $IPT -A FORWARD -p tcp --dport 631 -m state --state NEW -d 10.10.11.151 > -j ACCEPT > > The xp machine is set to use 10.10.11.151:631, raw. I've installed the > 2070N driver on XP. > > I've also tried using port 9100. > > But it doesn't work. I realize this is a combination, linux - xp , > printing and dnat issue, but I thought I'd start here. Anybody else > doing this? Any suggestions of other lists that might be useful? The combination of Linux and Windows should not be a problem. What IP address space are you using at each location (office 1, office 2, and home)? Are you sure that you want to print across the internet in the open and not through a VPN? This can probably be made to work, but you are exposing a lot of your printing to the world as relying on the world not filtering things on you. Grant. . . .