Re: Access VNC Server via DNAT

["Joel Pearson" <pearj@writeme.com>]

Hey,

Thanks for your help, I managed to get it working in the end, one of my
problems as you said was that the rule only worked from the internet (when I
was testing at home), and I somehow managed to screw my firewall rules so
that when I tried the DNAT thing at work and tried to access from home it
was dropping packets.
Restarted iptables then everything was happy, so I don't really know how
long it was actually working for, but its working now so I'm happy :-)

Thanks

Joel
"Venkatesh. K" <venkatesh@cbayscribe.com> wrote in message
news:012d01c380e0$0b35f120$2800a8c0@karu...
> ----- Original Message ----- 
> From: "Joel Pearson" <pearj@writeme.com>
> To: <netfilter@lists.netfilter.org>
> Sent: Saturday, September 20, 2003 7:26 PM
> Subject: Access VNC Server via DNAT
>
>
> > Hey,
> >
> > I have a vnc server that is on my local lan at home that I'd like to be
> able
> > to access from the internet via my internet gateway linux box.  I've
read
> a
> > little bit about it but I can't get my gateway to forward to ports, I've
> > tried this:
> > iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 5904 -s
> 192.168.0.2 -j
> > DNAT --to 192.168.0.25:5904
>
> If your internet interface is eth0, you need to do
> /sbin/iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 5904 -j
> DNAT --to-destination 192.168.0.25
>
> Please note the above rule will allow you to connect only from internet.
>
> > But it says it can't connect to the server. At the moment I'm just
trying
> to
> > get the port forwarding to work on my local lan, but it doesn't seem to
be
> > working. I've read of people haveing this working using a somewhat
similar
> > iptables command, is there some module I'm supposed to load to make this
> > happen?  My server is running RedHat 8 with iptables v1.2.6a
> >
> > Does anyone know why this isn't working?
> >
> > Thanks
> >
> > Joel
> >
>
> Venkatesh K
>
>
>