Mailinglist Archive: opensuse-security (485 mails)

< Previous Next >
RE: [suse-security] Traffic redirection using SuSEFirewall2
Manuel Balderrábano <garibolo@xxxxxxxxxx> wrote the Mar 4, 2004 2:53 PM:
> By port redirection I mean that all traffic coming to a specific port of the
> firewall will be redirected to a specific server on the DMZ zone, I think
> this is called circuit-level forwarding.

You can use the FW_FORWARD_MASQ
[snip from /etc/sysconfig/SuSEfirewall2]
# Example:
# 200.200.200.0/24,10.0.0.10,tcp,80,81,202.202.202.202
# The class C network 200.200.200.0/24 trying to access 202.202.202.202 port
# 80 will be forwarded to the internal server 10.0.0.10 on port 81.
# Example:
# 200.200.200.0/24,10.0.0.10,tcp,80
# The class C network 200.200.200.0/24 trying to access anything which goes
# through this firewall ill be forwarded to the internal server 10.0.0.10 on
# port 80

This way all connections are logged as FW-FORWARD-MASQ


< Previous Next >