At 09:46 PM 30/01/2001, you wrote:
Hi all, I have a little LAN with a SuSE 6.4 Server as gateway, within my LAN I have a NT box with IIS, I want to be able to access the the httpd on the NT box from the internet by specifying some port on my gateway. I have firewals-2.1-5 installed and all clients in my LAN have unlimited access to the internet and to the gateway. I tried configuring the redirection, but seems to me like this only works when the NT box has an public IP, but it has not not, an will never have. So is it possible to do it with the firewall or do I have to fiddle with ipchains ? Thanks & regards, Nagilum.
OK, This question has been asked and answered (usually by me) at least 6 times, so I decided it was time to put it in the FAQ *grin* http://www.susesecurity.com/faq/index.html#ipmasqadm What you need to do is "reverse" Masquerading. This can be accomplished with the IPMASQADM tool included on your SuSE CD. You will need to use this tool by hand, although it will happily co-exist along with Marc's IPFIREWALS package. (You will need to enable access to the port you want to forward in the firewall config of course) You can read the Author's FAQ at http://juanjox.kernelnotes.org/ipmasqadm-FAQ.txt NOTE: This requires that you have regular Masquerading working first! Cheers --- Nix - nix@susesecurity.com http://www.susesecurity.com