DMZ-firewall

To: <debian-firewall@lists.debian.org>
Subject: DMZ-firewall
From: Anders Gjære <Anders@oslo.kvalito.no>
Date: Thu, 6 Dec 2001 00:04:48 +0100
Message-id: <[🔎] 010B55064719D511AEBD0050048803620D4652@sekunda5.oslo.kvalito.no>

hi. 

i have a firewall with 5 nic's

it is firewalling some machines on 2 of the nic's, but now im setting up
a new mailserver and webserver.

these should have local ip's, and here is where my problems starts.

ive tried a lot of examples and read a lot of howtos, but with no luck.

iptables -t nat -A PREROUTING -p tcp -d $EXTMAILIP --dport 110 -j DNAT
--to-destination 192.168.10.10:110

and i dont get any output from logging packets,

$IPTABLES -A FORWARD -j LOG
$IPTABLES -A FORWARD -m limit --limit 3/minute --limit-burst 3 -j LOG \
--log-level DEBUG --log-prefix "IPT FORWARD packet died: "




--_
anders gjære
+47 414 22 934

Reply to:

Prev by Date: Re: SNAT or MASQUERADE?
Next by Date: RE: DMZ-firewall
Previous by thread: Re: Why all these unclean packets?
Next by thread: RE: DMZ-firewall
Index(es):
- Date
- Thread