iptables and forwarding port 80

To: debian-firewall@lists.debian.org
Subject: iptables and forwarding port 80
From: Steve Doerr <sdoerr@swbell.net>
Date: Fri, 21 Feb 2003 06:48:16 -0600
Message-id: <3E562010.1020704@swbell.net>

Hello.  I'm having trouble opening up port 80 on my firewall and I'm not
sure if it is because nmap shows it closed, or if I have a broken rule.

My rules for masquerading/redirect are as follows:

#pick up ip from dhcp
iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE

#protect forward rule
iptables -A FORWARD -i eth0 -m state --state NEW, INVALID -j DROP

#forward port 80

iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j DNAT --to\192.168.1.2:80


#open port 80
iptables -A INPUT -i eth0 -s 0/0 -d 0/0 -p tcp --dport 80 -j ACCEPT


Output of iptables -L:
ACCEPT 	tcp	--	anywhere	anywhere	tcp dpt:www

I can surf the internet on this network, but connections to port 80 aredenied.


Can anyone see any obvious oversights here?

Thanks for any help.
Steve

Reply to:

Follow-Ups:
- Re: iptables and forwarding port 80
  - From: Jason McCarty <bclg@iup.edu>

Prev by Date: Re: Write rule to a virtual interface
Next by Date: Re: iptables and forwarding port 80
Previous by thread: Re: Write rule to a virtual interface
Next by thread: Re: iptables and forwarding port 80
Index(es):
- Date
- Thread