Re: Iptable NAT problem
You need to "ifconfig eth0:1 up 203.94.71.36", this will cause arp replys
to be sent and the IP(protocol) stack to accept data for that IP. Then
your "iptables -i eth0:1 -j DNAT" cmds will work nicely, without any SNATS
as it's assumed that replys will need to come from 203.94.71.36.
--- Pradeeper <pradeeper@yahoo.com> wrote:
> Hi All
>
> In this kind of senario,
>
>
> -------------- eth1 ---------- eth0
> | WWW Server |---------------------|Firewall|-------------> Internet
> -------------- ----------
> 192.168.1.4
> [203.94.71.36]
>
>
> Firewall:
> eth0: 203.94.71.42
> eth1: 192.168.1.1
>
>
> WWW Server:
> eth0: 192.168.1.4
>
> o How does I tell rest of the world that I have a WWW server behind my
> firewall?
>
> o Does NATing do the trick?
>
> o Is there a way to listen on eth0 of my firewall for 203.94.71.36 ip?
>
> Thanks!
>
> Pradeeper
>
__________________________________
Do you Yahoo!?
New and Improved Yahoo! Mail - Send 10MB messages!
http://promotions.yahoo.com/new_mail
Reply to: