On Thu, 12 Jul 2007 14:43:51 +0200, Yann Lejeune wrote: > > iptables -t nat -A OUTPUT -p tcp --dport 80 -j DNAT --to > > 192.168.10.2 > > Be carreful, because here ALL trafic toward any TCP port 80 > coming from your firewall will be send to your 192.168.10.2 > host. Do you really want this ? Well, it's not exactly what I did, the rule I have now is this: iptables -t nat -A OUTPUT -o ! $WANIF -p tcp --dport 80 -j DNAT --to 192.168.10.2:80 -- mandi, Marco
Attachment:
pgpjmfDFhTHXc.pgp
Description: PGP signature