Port forwarding with ipmasq

To: debian-user@lists.debian.org
Subject: Port forwarding with ipmasq
From: Brendan Bache <moosh@arach.net.au>
Date: Tue, 16 Dec 2003 21:06:44 +0800
Message-id: <[🔎] 20031216130644.GA6401@atlas>

Hi,

I'm running debian woody on my gateway with the ipmasq package installed
and I need to do some port forwarding. For instance, I need to forward
some ports for BitTorrent running on a box on my LAN so I created a file
/etc/ipmasq/rules/F10bt.rul

---F10bt.rul---
ipnm_cache ppp0
btPorts="6881 6882"

for port in $btPorts;
do
    $IPTABLES -A PREROUTING -t nat -p tcp -d $IPOFIF/$NMOFIF --dport $port
        -j DNAT --to-destination 10.0.0.2:$port
    $IPTABLES -A FORWARD -p tcp -d $IPOFIF/$NMOFIF --dport $port -m
        state --state NEW,ESTABLISHED,RELATED -j ACCEPT
done
---/F10bt.rul---

Where ppp0 is my external interface and 10.0.0.2 is the box on the LAN
that is running the BitTorrent client. From the gateway I can connect to
10.0.0.2 on port 6881. However if I try using the IP of my external
interface then I get connection refused. What's wrong with my rules? I
haven't changed anything about the default ipmasq setup other than
adding that .rul file and masquerading is working fine, it's just port
forwarding that is having problems. Using iptables -L and iptables -t
nat -L I can see that these rules are being added to their respective
chains without issue.

Thanks in advance for any help.

Reply to:

Follow-Ups:
- Re: Port forwarding with ipmasq
  - From: Bill Goudie <bgoudie@mail.com>

Prev by Date: Re: loopback interface down, sob ;-(
Next by Date: Re: dpkg-scanpackages [was Re: General debian questions]
Previous by thread: Re: Nautilus won't die
Next by thread: Re: Port forwarding with ipmasq
Index(es):
- Date
- Thread