Hello everyone, I have Tomcat running on port 8180, but it should be visible on port 80 from the outside. The system is standalone, with "firewall" and application server on the same machine. These two rules do the trick: REDIRECT net 8180 tcp www Web/ACCEPT net $FW Now, I have a second IP address on the same interface (eth0). On that second IP address, port 80 should be accepted as is, without forwarding to port 8180. Unfortunately, I cannot add my first IP to the REDIRECT rule, the "DEST" column does not allow a syntax like "aa.bb.cc.dd:port". How can I accomplish that task? Regards, Andreas ------------------------------------------------------- This SF.Net email is sponsored by xPML, a groundbreaking scripting language that extends applications into web and mobile media. Attend the live webcast and join the prime developer group breaking into this new coding territory! http://sel.as-us.falkag.net/sel?cmd=lnk&kid=110944&bid=241720&dat=121642
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Andreas Schildbach wrote:> Hello everyone, > > I have Tomcat running on port 8180, but it should be visible on port 80 > from the outside. The system is standalone, with "firewall" and > application server on the same machine. > > These two rules do the trick: > > REDIRECT net 8180 tcp www > Web/ACCEPT net $FW > > Now, I have a second IP address on the same interface (eth0). On that > second IP address, port 80 should be accepted as is, without forwarding > to port 8180. > > Unfortunately, I cannot add my first IP to the REDIRECT rule, the "DEST" > column does not allow a syntax like "aa.bb.cc.dd:port". How can I > accomplish that task?Change your REDIRECT rule to: REDIRECT net 8180 tcp www - <IP address> Where <IP address> is the address that you want redirected. The other address will be passed through as is. - -Tom - -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFEAxjVO/MAbZfjDLIRAsGVAJ9KT2qqooB1iQSFUx+vN+wN3ukA5wCeIlde fcvoN0qcFboKyUo7A9ziHWc=GQO7 -----END PGP SIGNATURE----- ------------------------------------------------------- This SF.Net email is sponsored by xPML, a groundbreaking scripting language that extends applications into web and mobile media. Attend the live webcast and join the prime developer group breaking into this new coding territory! http://sel.as-us.falkag.net/sel?cmd=lnk&kid=110944&bid=241720&dat=121642
Andreas Schildbach
2006-Feb-28 06:11 UTC
Re: REDIRECT action and IP address in DEST column [solved]
Tom Eastep wrote:> Change your REDIRECT rule to:Thanks, that solved it! Regards, Andreas ------------------------------------------------------- This SF.Net email is sponsored by xPML, a groundbreaking scripting language that extends applications into web and mobile media. Attend the live webcast and join the prime developer group breaking into this new coding territory! http://sel.as-us.falkag.net/sel?cmd=lnk&kid=110944&bid=241720&dat=121642