Hi all! Im running SuSE 8.1 with SuSEfirewall at home. Works nice but i wish to do a port forwarding from my external masq. ethernet device to on internal machine. Can that be done with 8.1? Eg -----> http --> external masq dev. ---> internal web server port 80 What is the syntax? Regards /Mattias
On Mon, Jun 16, 2003 at 11:13:18AM +0200, Olsson Mattias wrote:
Hi all!
Im running SuSE 8.1 with SuSEfirewall at home. Works nice but i wish to do a port forwarding from my external masq. ethernet device to on internal machine. Can that be done with 8.1?
It's possible, and the SuSEfirewall config has a clause for it, under section 14.
Eg
-----> http --> external masq dev. ---> internal web server port 80
What is the syntax?
FW_FORWARD_MASQ="0/0,192.168.1.1,tcp,80" where 0/0 can be replaced with any CIDR network notation if you want to limit which networks can use the forwarded port, 192.168.7.1 is the (probably RFC 1918) IP address of your internal machine. The tcp and 80 bits should be self-explanatory. See the notes in /etc/sysconfig/SuSEfirewall for more details. HTH, Dan -- Daniel Bye 2XP Group Ltd http://2xp.co.uk
Hi,
try it with iptables :
iptables -A PREROUTING -t nat -i eth0 -p tcp --dport 80 --to-destination
192.168.2.4:80 -j ALLOW
Note :
eth0 -> if you're using DSL on eth0
ippp0 -> if you're using ISDN
Wrote this from scratch - not sure if really working ...
regards,
bruno
Olsson Mattias
Hi all!
Im running SuSE 8.1 with SuSEfirewall at home. Works nice but i wish to do a port forwarding from my external masq. ethernet device to on internal machine. Can that be done with 8.1?
Eg
-----> http --> external masq dev. ---> internal web server port 80
What is the syntax?
Regards /Mattias
-- Check the headers for your unsubscription address For additional commands, e-mail: suse-security-help@suse.com Security-related bug reports go to security@suse.de, not here
participants (3)
-
BLeonhardt@analytek.de
-
Daniel Bye
-
Olsson Mattias