Hello all:
I am having trouble getting port forwarding
with iptables to work.
I have this configuration:
Internet --- Linux machine --- Windows machine
The windows machine is set up to listen on
IP address 10.0.0.31
I am able to use lynx to connect to http://10.0.0.31 on
the linux machine so there is no problem going from
the linux machine to the windows machine.
I have tied a public IP address a.b.c.d to the
linux machine and entered these rules in its
firewall:
/sbin/ifconfig eth0:1 $WIN_EXTERNAL_IP netmask $ETH0_NETMASK broadcast
$ETH0_BCAST
/sbin/iptables -t nat -A PREROUTING -p tcp -i eth0 -d $WIN_EXTERNAL_IP
--dport 80 -j DNAT --to $WIN_INTERNAL_IP:80
/sbin/iptables -A FORWARD -p tcp -i eth0 -d $WIN_INTERNAL_IP --dport 80 -j
ACCEPT
I have this log entry at the bottom of the firewall rules:
/sbin/iptables -A FORWARD -j LOG --log-prefix "FORWARD "
When I try to go to the external IP address http://a.b.c.d from
another network, I get an error.
Any ideas?
Thanks,
Neil
--
Neil Aggarwal, (281)846-8957, www.JAMMConsulting.com
Will your e-commerce site go offline if you have
a DB server failure, fiber cut, flood, fire, or other disaster?
If so, ask about our geographically redundant database system.