netdev
[Top] [All Lists]

iptables-problem

To: netdev@xxxxxxxxxxx
Subject: iptables-problem
From: amir_sarbazi <amir.sarbazi@xxxxxxxxx>
Date: Sat, 26 Mar 2005 22:00:02 +0430
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:mime-version:content-type:content-transfer-encoding; b=Z+I9pDvEaIyR4FT053WErDhhinGO2Sr4Ttol5zNcwp7RUqV3C6NNIij7Emn2HvvPYHIW7i2742pGsXRWP6d9yRZULip36llipYBfJ0xUk/OygwuP55ckS3Qpvy/dRj/pJhmYROjlCSBnHrWUdGHIE49mvA6uNxGrGFqc7QvgVOo=
Reply-to: backslash46@xxxxxxxxx
Sender: netdev-bounce@xxxxxxxxxxx
 Hi all
  
 I have a Lan with range IP:192.168.1.0/24  that
 192.168.1.3 is my webserver.
 & have a firewall with 2 eth (eth0:192.168.1.2)
 & (eth1:217.218.68.20) .
 I want  when firewall get web request packet
 with eth1 then give it to eth0 & eth0 send
 packet to 192.168.1.3:80.
  
 I used these iptables that SNAT didn't work(Bad
 argument):
 iptables -A PREROUTING -t nat -p tcp -d
 217.218.68.20 --dport 80 -j SNAT --to
 192.168.1.2:80
 or(--to-source 192.168.1.3:80)
  
 But DNAT is working good:
 iptables -A PREROUTING -t nat -p tcp -d
 217.218.68.20 --dport 80 -j DNAT --to
 192.168.1.3 
  
 with regards.
  
 amir sarbazi

<Prev in Thread] Current Thread [Next in Thread>