Re: Redirecting incoming local ports
Why dont you accept packets from the local server to all ports and deny connections from other computers?
Best Regards,
Ken Gilmour
IT Chimp
Mobile: 087 400 64 12
Direct: 01 616 14 16
Do not meddle in the affairs of netadmins for they are subtle and quick to anger.
-----BEGIN GEEK CODE BLOCK-----
Version: 3.12
GAT dpu s: a? C+++ UB++++ P--- L++ E--- W+++ N+ o++++ K- w---
O- M-- V-- PS+ PE Y+++ PGP++ t- 5- X- R- tv- b- DI++ D+
G e++++ h+ r++ y**
------END GEEK CODE BLOCK------
Replying to the message sent by Aaron on Wed, 18 Jun 2003 13:32:43 -0400, received at 20:37:31 on 18/06/2003. Aaron wrote:
>Firewall experts,
>
>Despite searching all of the list archives, I couldn't come up with
>a possible solution to this issue.
>
>What I would like to do is accept connections from my external
>interface on port 9090 and redirect them to port 80. I do not want
>connections to port 80 accepted from outside at all.
>
>I've read the HOWTOs and the tutorials and I was satisfied that this
>recipe might work:
>
>$IPTABLES -t nat -A PREROUTING -p tcp --dport 9090 \ -j REDIRECT
>--to-ports 80
>
>But alas, it doesn't seem to. Then it occurred to me that since the
>default target of my INPUT chain is REJECT, that I might need to
>explicitly accept the packets that are (now) destined for port 80.
>But this produces another problem, which is that I don't want to
>accept packets inbound on port 80, I only want to accept the ones
>that have been redirected to port 80.
>
>How can I set this up? Thanks a lot!
>
>--
>Aaron Bieber -
>dev.com
Reply to: