bugzilla-daemon at netfilter.org
2013-May-31 14:50 UTC
[Bug 804] localhost port forwarding to a different host with DNAT
https://bugzilla.netfilter.org/show_bug.cgi?id=804
Phil Oester <netfilter at linuxace.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
CC| |netfilter at linuxace.com
Resolution| |WONTFIX
--- Comment #1 from Phil Oester <netfilter at linuxace.com> 2013-05-31
16:50:58 CEST ---
You are correct that you cannot do this with the loopback interface, due to
special handling within Linux. This is not a netfilter bug, just the way Linux
works.
However, what you want to achieve is trivially done simply by using an unused
RFC 1918 address. One example:
iptables -t nat -A OUTPUT -d 10.10.10.10 -p tcp --dport 3306 \
-j DNAT --to real_mysql_server:3306
Then all your localhost processes would connect to 10.10.10.10:3306 instead of
localhost:3306.
Closing.
--
Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.
Possibly Parallel Threads
- [Bug 804] New: localhost port forwarding to a different host with DNAT
- [Bug 514] Making DNAT --to-destination resolve service named of port
- [Bug 580] iptables-restore and iptables-save lack comparison of a saved ruleset against the currently deployed rules
- [Bug 850] New: DNAT applied even after deleting the IP Tables DNAT Rule
- [Bug 773] iptables performance limits on # of rules using ipset
Wisdom of the Ancients
