Re: port forward with the ipmasq package and Iptables

To: debian-firewall@lists.debian.org
Subject: Re: port forward with the ipmasq package and Iptables
From: Tarragon Allen <melange@n12turbo.com>
Date: Tue, 29 Apr 2003 10:30:33 +1000
Message-id: <[🔎] 200304291030.33863.melange@n12turbo.com>
In-reply-to: <[🔎] 20030428234028.GP1175@nova.vor.em.ca>
References: <[🔎] 20030428234028.GP1175@nova.vor.em.ca>

On Tuesday 29 April 2003 09:40, Tom Goulet (UID0) wrote:
> Hello,
>
> How do I forward port a port on the external IP to the same port on an
> internal IP?  I am using the ipmasq package and Iptables.  I'm willing
> to abandon the ipmasq package.

You shouldn't need the ipmasq package, NAT has been built into iptables for 
ages.

A rule like this should do the trick:

iptables -t nat -A PREROUTING -p tcp -d $external-ip --dport $external-port \  
-j DNAT --to $internal-ip:$internal-port

You will probably need a rule like this as well:

iptables -t nat -A POSTROUTING -o $external-ip -s $internal-ip -j MASQUERADE

$internal-ip in the last one can be changed to the network range, and will 
allow general NAT for that network.

t
-- 
GPG: http://n12turbo.com/tarragon/public.key

Reply to:

Follow-Ups:
- Re: port forward with the ipmasq package and Iptables
  - From: "Tom Goulet (UID0)" <uid0@em.ca>

References:
- port forward with the ipmasq package and Iptables
  - From: "Tom Goulet (UID0)" <uid0@em.ca>

Prev by Date: Re: port forward with the ipmasq package and Iptables
Next by Date: Re: port forward with the ipmasq package and Iptables
Previous by thread: Re: port forward with the ipmasq package and Iptables
Next by thread: Re: port forward with the ipmasq package and Iptables
Index(es):
- Date
- Thread