AW: portforwarding of udp + tcp

To: "Vineet Kumar" <debian-security@virtual.doorstop.net>, <debian-firewall@lists.debian.org>
Subject: AW: portforwarding of udp + tcp
From: "HGS: Buchleitner Martin" <mb@hgs.at>
Date: Tue, 3 Jul 2001 13:44:01 +0200
Message-id: <[🔎] 721B2A3D0563564D9805A93D10ACABA3133CE2@srv01.hgs.at>

thanks - it works

the kernel wos wrong configured.

on problem left: iptabels does not run from script...


martin

-----Ursprungliche Nachricht-----
Von: Vineet Kumar [mailto:debian-security@virtual.doorstop.net]
Gesendet: Dienstag, 3. Juli 2001 11:11
An: debian-firewall@lists.debian.org
Betreff: Re: portforwarding of udp + tcp


Check out xinetd.

Why didn't it work through iptables?

iptables -t nat -A PREROUTING -i $EXT_IF -p udp -d $EXT_IP --dport 53 -j
DNAT
--to-destination $INTERNAL_SERVER

and make sure you also have it allowed to pass through the FORWARD chain
with something like

#forward traffic
iptables -A FORWARD -i $EXT_IF -o $INT_IF -p udp -d $INTERNAL_SERVER
--dport 53 -j ACCEPT
#reply traffic
iptables -m state -A FORWARD -o $EXT_IF -i $INT_IF -p udp -s
$INTERNAL_SERVER --sport 53 --state ESTABLISHED,RELATED -j ACCEPT

(beware, those are just off the top of my head, not tested)

Vineet

* HGS: Buchleitner Martin (mb@hgs.at) [010702 14:29]:
> Hi !
> 
> I am trying to get access to an internal server with an local-ip
number
> by portforwarding.
> 
> for tcp i found rinetd, because port-forwarding by iptables did not
> work.
> exists there a client which can do this with udp ?
> 
> i need udp for the dns-server, http and passive ftp work by rinetd.
> 
>  
> 
> martin
>

Reply to:

Prev by Date: [no subject]
Next by Date: AW: iptables does not run from script
Previous by thread: Re:
Next by thread: AW: iptables does not run from script
Index(es):
- Date
- Thread