Re: Redirecting incoming local ports [SOLVED]

To: debian-firewall@lists.debian.org
Subject: Re: Redirecting incoming local ports [SOLVED]
From: Aaron <aaron@core-dev.com>
Date: Wed, 18 Jun 2003 16:34:40 -0400
Message-id: <[🔎] 20030618203440.GA8995@core-dev.com>
Mail-followup-to: debian-firewall@lists.debian.org
In-reply-to: <[🔎] oprqy6yez5cyxqgb@mail.grupocom.com.ar>
References: <[🔎] 20030618173243.GA1759@core-dev.com> <[🔎] oprqy6yez5cyxqgb@mail.grupocom.com.ar>

On -6-Wed, Jun 18, 2003 at 03:28:52PM -0300, Koba <koba@grupocom.com.ar> spake thus,
> This should work:
> 
> $IPTABLES -t nat -A PREROUTING -p tcp --dport 80 -j DROP
> $IPTABLES -t nat -A PREROUTING -p tcp --dport 9090 -j REDIRECT --to-ports 
> 80
> 
> $IPTABLES -t nat -A INPUT -p tcp --dport 80 -j ACCEPT
> 
> The packets to port 80 are dropped even before touching the INPUT chain.
> The ones accepted by INPUT rule are only those which had been redirected 
> from port 9090.
> I'll recommend using -d your_ip/32 so you don't drop http requests being 
> routed by your box, and -i ext_if.
> 

That absolutely worked, thanks Koba!

Also thanks to the others who have sent me suggestions, they helped me to
better understand iptables even though they didn't work out quite as expected.

-- 
Aaron Bieber
-
Graphic Design // Web Design
http://www.core-dev.com/
aaron@core-dev.com

Reply to:

References:
- Redirecting incoming local ports
  - From: Aaron <aaron@core-dev.com>
- Re: Redirecting incoming local ports
  - From: Koba <koba@grupocom.com.ar>

Prev by Date: Re: Redirecting incoming local ports
Next by Date: Re: Redirecting incoming local ports
Previous by thread: Re: Redirecting incoming local ports
Next by thread: Re: Redirecting incoming local ports
Index(es):
- Date
- Thread