Re: iptables

To: Manu <manuliste@manu-dpk.net>
Cc: Debian ParFeu <debian-firewall@lists.debian.org>
Subject: Re: iptables
From: Pascal Hambourg <pascal.mail@plouf.fr.eu.org>
Date: Wed, 22 Jun 2011 22:40:58 +0200
Message-id: <[🔎] 4E02535A.5030309@plouf.fr.eu.org>
In-reply-to: <[🔎] 6621A287F75A40CA9A220DCC823053C7@AsusEEPC1011Manu>
References: <[🔎] 6621A287F75A40CA9A220DCC823053C7@AsusEEPC1011Manu>

Hello,

Manu a écrit :
> 
> Hello,
> I'm French, I'm sorry for my bad english.

You'd better be sorry for posting HTML.

> I'm a beginner debian user.
> In my home network, I have a linux machine with debian6.
> My debian has to do dhcp server with isc-server.
> I have 2 network card, eth0 = public Ip (adsl modem)
> eth1 = lan.
> My dhcp server runs.
> But I can't connect to internet with pc's.
> Description :
>  
> network  : 10.20.30.0
> mask : 255.255.255.0
> Windows server: 10.20.30.2
> Linux server (Debian6) : 10.20.30.1 (DHCP a    nd gateway to wan)
> Accesspoint Wifi : 10.20.30.3
> NAS server : 10.20.30.4
> MAO PC: 10.20.30.5
> laptop : 10.20.30.6
> IP phone : 10.20.30.7, 10.20.30.8, 10.20.30.9
> I can connect to lan machines but not to wan.
>  
> cat /proc/sys/net/ipv4/ip_forward is 1
>  
> What are routes I have to create with route command ?

Probably none. But maybe you missed the masquerading.

iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE

> How can I routed 80 port to 10.20.30.1  with iptables ?

If you mean port forwarding of connections coming from outside :

iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 \
  -j DNAT --to 10.20.30.1

But as 10.20.30.1 is the box itself, this is probably not what you want.

Reply to:

References:
- iptables
  - From: "Manu" <manuliste@manu-dpk.net>

Prev by Date: Re: iptables
Next by Date: Re: iptables
Previous by thread: Re: iptables
Next by thread: Re: iptables
Index(es):
- Date
- Thread