bugzilla-daemon at netfilter.org
2013-May-31 14:50 UTC
[Bug 804] localhost port forwarding to a different host with DNAT
https://bugzilla.netfilter.org/show_bug.cgi?id=804 Phil Oester <netfilter at linuxace.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED CC| |netfilter at linuxace.com Resolution| |WONTFIX --- Comment #1 from Phil Oester <netfilter at linuxace.com> 2013-05-31 16:50:58 CEST --- You are correct that you cannot do this with the loopback interface, due to special handling within Linux. This is not a netfilter bug, just the way Linux works. However, what you want to achieve is trivially done simply by using an unused RFC 1918 address. One example: iptables -t nat -A OUTPUT -d 10.10.10.10 -p tcp --dport 3306 \ -j DNAT --to real_mysql_server:3306 Then all your localhost processes would connect to 10.10.10.10:3306 instead of localhost:3306. Closing. -- Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are watching all bug changes.
Apparently Analagous Threads
- [Bug 804] New: localhost port forwarding to a different host with DNAT
- [Bug 514] Making DNAT --to-destination resolve service named of port
- [Bug 580] iptables-restore and iptables-save lack comparison of a saved ruleset against the currently deployed rules
- [Bug 850] New: DNAT applied even after deleting the IP Tables DNAT Rule
- [Bug 773] iptables performance limits on # of rules using ipset