Re: Problemas com IPtables

To: <debian-user-portuguese@lists.debian.org>
Subject: Re: Problemas com IPtables
From: Christian Lyra <lyra@pop-pr.rnp.br>
Date: Thu, 12 Jun 2003 16:37:53 -0300
Message-id: <[🔎] 200306121637.53665.lyra@pop-pr.rnp.br>
In-reply-to: <[🔎] 001d01c3312c$cff248f0$17030a0a@FNET.ORG.BR>
References: <[🔎] 001d01c3312c$cff248f0$17030a0a@FNET.ORG.BR>

Oi,

> Estou precisando redirecionar todas as requisições da porta 80
> de um IP externo,
> para um servidor interno local.
>
> estou usando a seguinte regra:
> iptables -A PREROUTING -t nat -p tcp -i eth1 -d (ip_externo) --dport 80
> DNAT --to 10.10.1.2
>
> estou sando a seguinte politica:
> iptables -P INPUT DROP
> iptables -P OUTPUT ACCEPT
> iptables -P FORWARD DROP
> iptables -P PREROUTING ACCEPT


	Se vc só fizer isso os pacotes serão dropados na chain Forward... acrescente:

iptables -A FORWARD -p tcp -s 0.0.0.0/0 -d <ip_interno> --dport 80 -j ACCEPT

-- 
Christian Lyra
POP-PR - RNP

http://lyra.soueu.com.br
http://wecanstopspam.org

  Thus spake the master programmer: 
  ``It is time for you to leave.'' 
						The Tao Of Programing

Reply to:

References:
- Problemas com IPtables
  - From: Flávio Cruz <fcruz@fnet.org.br>

Prev by Date: wavelan
Next by Date: Re: Problemas com IPtables
Previous by thread: Problemas com IPtables
Next by thread: Re: Problemas com IPtables
Index(es):
- Date
- Thread