Re: port forward with the ipmasq package and Iptables

To: debian-firewall@lists.debian.org
Subject: Re: port forward with the ipmasq package and Iptables
From: "Tom Goulet (UID0)" <uid0@em.ca>
Date: Wed, 30 Apr 2003 00:41:46 +0000
Message-id: <[🔎] 20030430004146.GC1175@nova.vor.em.ca>
In-reply-to: <[🔎] 20030428234028.GP1175@nova.vor.em.ca>
References: <[🔎] 20030428234028.GP1175@nova.vor.em.ca>

> How do I forward port a port on the external IP to the same port on an
> internal IP?  I am using the ipmasq package and Iptables.  I'm willing
> to abandon the ipmasq package.

Create the file /etc/ipmasq/rules/F10portfw.rul or some similar name (I
think it just needs to begin with "F") and put something similar to the
below inside it:

EXTIF=eth1
INTIF=eth0
EXTIP=192.0.0.37
PRINTERIP=192.168.0.10

$IPTABLES -A FORWARD -i $EXTIF -o $INTIF -p tcp --dport 515 -m state \
        --state NEW,ESTABLISHED,RELATED -j ACCEPT
$IPTABLES -A PREROUTING -t nat -p tcp -d $EXTIP --dport 515 \
        -j DNAT --to $PRINTERIP:515

And run:
/etc/init.d/ipmasq restart

The ipmasq package offers ways to pull in all the interface names and
addresses as variables and even loop over multiple external interfaces,
which are all documented in the ipmasq-rule manual page, but I'm not
interested in learning them.

-- 
Tom Goulet				mail: uid0@em.ca
UID0 Unix Consulting			web:  em.ca/uid0/

Reply to:

Follow-Ups:
- Re: port forward with the ipmasq package and Iptables
  - From: Tarragon Allen <tarragon@onthe.net.au>

References:
- port forward with the ipmasq package and Iptables
  - From: "Tom Goulet (UID0)" <uid0@em.ca>

Prev by Date: Re: port forward with the ipmasq package and Iptables
Next by Date: Re: port forward with the ipmasq package and Iptables
Previous by thread: Re: port forward with the ipmasq package and Iptables
Next by thread: Re: port forward with the ipmasq package and Iptables
Index(es):
- Date
- Thread