Displaying 20 results from an estimated 820 matches for "dnats".
Did you mean:
dnat
2003 Aug 28
5
Router for giving more than 1 ip
Hi i have a debian box working as a router.. it works quite well, now
i want to give more than 1 ip.. is it possible to do it? some of them
must be an open ip.. i mean.. all ports opened is it possible? how
should i do it?
Here is my nat.sh script just in case someone wants it.. (comments r
in spanish.. and not right)
Thanks in advance,
#!/bin/sh
echo "AthoS LaN Generando
2004 Aug 10
11
who gives access? was: why ADD_DNAT_ALIASES missing?
hi,
there was some email problems and i repeat my question too fast, but
this is the second part of my questions.
- only the rules and policy files give access right? ie. rules in the
FORWARD chain of the filter table in iptables ?
- is a line in masq file automaticaly add an accept rule too? eg. in
msaq file
eth0 <internal ip>
allow connection from <internal ip> (local zona) to the
2004 Sep 10
1
Is ProxyARP or NAT entries really neccesary for DNAT to work?
I have been trying to get DNAT to work and I actually have succeeded
too, however, not how I thought it would work when reading through the
documentation.
1. No matter what I do I cannot get DNAT to work unless I have an entry
in eiter the nat or the proxyarp file. Is that really how it''s supposed
to be? I can''t find anything about it in the documentation.
2. Also, in the
2004 Sep 14
1
start error "invalid interface" on shorewall 2.08
I have a dsl modem and two static IP addresses: 66.17.65.22
and 66.17.65.161. I am using the standard configuration from
the Shorewall Setup Guide for multiple IP addresses and
modifications suggested by the Aliased Interfaces Guide.
I want to set up a shorewall 2.08 router for my home (Fedora
Core 2 / kernel 2.6.8-1.521). I want share an internet connection with some pc''son a local
2005 Mar 18
6
Fowarding through networks
1 small question i have 4 network cards on my firewall
eth0 inet
eth1 internel network
eth2 customer network
eth3 freeswan vpn
is there a way that i can connect the eth2 and eth1 network together so
that i can access the servers off eth1 from eth2?
Marshal McInnis Tech / Web Designs
1-205-344-4455 Ext 208
2004 Apr 01
5
DNAT PPTP questions
I have two/three PPTP servers on my network and each one of them are on
their own subnet and I want to be able to send traffic to each and
everyone.
My rules file entry is as follows
DNAT net loc:1.1.1.1 tcp 1723
DNAT net loc:1.1.1.1 47
and
DNAT net loc:2.2.2.2 tcp 1723
DNAT net loc:2.2.2.2 47
however all the traffic only goes to 1.1.1.1 because its the first
DNAT entry.
I tried the
2008 Oct 01
2
DNAT Issue
Hi.
Im setting up a web farm test lab. I have a number of machines in the
test last on a dmz zone on network 10.20.30.0.
The test lab firewall has two NICS. One (eth0) has two ip addresses,
eth0 10.161.101.40 and eth0:0 10.161.10.49. The other one, eth1 is
on a private network, 10.20.30.0.
I want to use DNAT to allow test engineers to ssh into the machines in
the web farm. I have
2005 Jan 25
2
DNS, DNAT and Notifies
I have a pretty straightforward shorewall (v 2.0.12) setup in my Phoenix
office.
IP addresses on the firewall
eth0 172.16.10.249
eth1 12.47.198.100
eth1:1 12.47.198.108
eth1:2 12.47.198.101
eth2 172.16.11.249
interfaces:
loc eth0 detect
net eth1 detect blacklist
dmz eth2 detect
vpn1 tun1 192.168.124.255
zones
net Net
2004 Jan 21
3
FW: DNAT and masq problem with kernel 2.4.23
Hi,
after kernel upgrade to 2.4.23 my existing configuration of shorewal 1.4.8
will not start / it fail on DNAT and/or masq with message: "iptables:
Invalid argument" /
I founded some similar problems description - see links bellow, but there is
no solution how to get work shorewall with DNAT and masq with 2.4.23 kernel.
http://www.ussg.iu.edu/hypermail/linux/kernel/0312.0/0268.html
2013 Sep 10
4
[Bug 850] New: DNAT applied even after deleting the IP Tables DNAT Rule
https://bugzilla.netfilter.org/show_bug.cgi?id=850
Summary: DNAT applied even after deleting the IP Tables DNAT
Rule
Product: iptables
Version: 1.4.x
Platform: All
OS/Version: All
Status: NEW
Severity: major
Priority: P5
Component: iptables
AssignedTo: netfilter-buglog at
2006 Feb 21
1
[Bug 452] New: DNAT to internal network don't work with source routing and 2 uplinks
https://bugzilla.netfilter.org/bugzilla/show_bug.cgi?id=452
Summary: DNAT to internal network don't work with source routing
and 2 uplinks
Product: netfilter/iptables
Version: linux-2.6.x
Platform: i386
OS/Version: Debian GNU/Linux
Status: NEW
Severity: normal
Priority: P2
2005 Nov 25
1
2 WAN links and DNAT
Hi
Here is a short description of my network:
ppp0 (adsl) ppp1 (adsl)
| |
| |
---------------------
| Router |
| Firewall |
| MASQUERAD |
| DNAT |
| |
| eth0 |
---------------------
|
|
|
----------------------
|
2003 Jan 14
3
Shorewall-1.3.13
Just some stuff that was laying around in CVS:
1. Added ''DNAT-'' target.
2. Print policies in ''check'' command.
3. Added CLEAR_TC option.
4. Added SHARED_DIR option.
[teastep@wookie Shorewall]$ cat releasenotes.txt
This is a minor release of Shorewall that has a couple of new features.
New features include:
1) A new ''DNAT-'' action has been
2004 Sep 02
3
Fwd: Bug#268999: shorewall: Allow action templates to use DNAT target
Hi all in the ShoreWall community,
[please CC me since I''m not on the list]
I had been using FIAIF for a little while, and the setup of ShoreWall
has been much easier, the config for each operation in one place, and
I''m very happy with it.
That said, it looks like one of the concepts could be taken a bit
further. In this case, it is actions.
To get the process started, I
2005 Jun 22
0
Issue migrating from 1.4.6c to 2.4.0 with all zone in DNAT rule
Hi all,
net : internet zone
dmz : DMZ zone
Lan : local network zone
in 1.4.6c this rule :
DNAT all lan:10.0.0.1 tcp http - 192.0.0.1
does generate the following iptables rules in nat table :
Chain OUTPOUT
DNAT tcp -- 0.0.0.0/0 192.0.0.1 tcp dpt:http to:10.0.0.1
Chain net_dnat
DNAT tcp -- 0.0.0.0/0 192.0.0.1 tcp dpt:http to:10.0.0.1
Chain dmz_dnat
2005 Apr 27
1
Problems with DNAT
Hi, i''m a shorewall users and i have the following problem:
I have one class C range of IP''s and i have three zones (net, dmz , loc)
I need create one rule to dnat one valid ip address (but not in use in
one computer) to one invalid host in my loc zone.
How i do?
I try this:
DNAT net:200.200.200.200 dmz:200.193.137.38 tcp
137,138,139,445 -
2007 Sep 25
1
DNAT PREROUTING issue with iptables
...IRST firewall.
2.3.4.5/29 is the internet interface of SECOND firewall. it has DMZ zone. in
that DMZ zone, mail server runnig @ 192.168.100.3
Now I want to DNAT port 25 of FISRT firewall (i.e - its ip address -
1.2.3.4/29) to the internet ip address ( 2.3.4.5/29) of SECOND firewall.
That firewal DNATs port 25 to mail server @ 192.168.100.3 in DMZ zone.
These are rules I have added.
FIRST firewall (its internet ip address - 1.2.3.4/29) I have addes below
rule.
iptables -t nat -A PREROUTING -p tcp -i eth0 -d 1.2.3.4 --dport 25 -j DNAT
--to-destination 2.3.4.5:25
That should forward port 25 to...
2005 Dec 14
2
DNAT config not working
I am having a problem that I really just don''t get....
I have this in my rules file:
DNAT net loc:192.168.1.2 tcp 21 21
Everything worked fine earlier today.. Now it is dropping packets destined
for Port 21
/var/log/messages:
Dec 14 00:36:39 pcp08479598pcs kernel: Shorewall:net2all:DROP:IN=eth0 OUT=
MAC=00:0b:6a:3f:e6:72:00:01:5c:22:92:42:08:00 SRC=24.210.36.92
DST=68.57.216.61
2007 Mar 07
4
PREROUTING - DNAT with iptables for an ASTERISK BOX
Hi,
I am running a ASTERISK BOX behind a firewall. It is at DMZ .
Now I want to connect to my ASTERISK BOX from Internet. So I want to DNAT.
How can I do it?
Pls assume that ip address that connects to Internet on firewall is
1.2.3.4and is attached to eth0.
And ASTERISK BOX is 192.168.101.23
Then, What is the rule (PREROUTING) for it? What is the port to DNAT?
I think udp 5060. So I have
2004 Oct 28
6
Problems with Port Forwarding
Hello all,
Running the "ancient" 1.4.7-RC1 version I have a problem with port
forwarding.
I have for a number of external fixed IP addresses forwarding to an internal
terminal server - this works :-)
DNAT net:111.22.33.44 loc:192.168.1.11 tcp 3389
DNAT net:222.33.44.55 loc:192.168.1.11 tcp 3389
Now I need to forward port 80 from one external address to an