Shorewall users - Jun 2006 - Redirect Host to Host

Hello
I have a PC with 2 IPs publics IP1 in eth0 and IP2 in eth0:0
I want to do a redirection of IP2 to an other public IP IP3 in an other
laptop (other network)
- for all ports : IP2  ---> IP3
- for juste www : IP2:www --> IP3:www

i tried many combination with shorewall-3.0.7-4, but no sucess
no help from google,

Thanks in advance

Laurent

Syloe Tech wrote:
> Hello
> I have a PC with 2 IPs publics IP1 in eth0 and IP2 in eth0:0
> I want to do a redirection of IP2 to an other public IP IP3 in an other
> laptop (other network)
> - for all ports : IP2  ---> IP3
> - for juste www : IP2:www --> IP3:www
>
> i tried many combination with shorewall-3.0.7-4, but no sucess
> no help from google,
Sounds like you want to DNAT that port, or perhaps one-to-one NAT for
the entire machine.  The FAQ and setup guides on http://shorewall.net
should provide all you need.

Paul

Le vendredi 09 juin 2006 à 10:45 +1000, Paul Gear a écrit
:
> Syloe Tech wrote:
> > Hello
> > I have a PC with 2 IPs publics IP1 in eth0 and IP2 in eth0:0
> > I want to do a redirection of IP2 to an other public IP IP3 in an
other
> > laptop (other network)
> > - for all ports : IP2  ---> IP3
> > - for juste www : IP2:www --> IP3:www
> >
> > i tried many combination with shorewall-3.0.7-4, but no sucess
> > no help from google,
> 
> Sounds like you want to DNAT that port, or perhaps one-to-one NAT for
> the entire machine.  The FAQ and setup guides on http://shorewall.net
> should provide all you need.
i read this howto 
http://www.shorewall.net/NAT.htm

but it work just if i want to do NAT between one public IP and one
private(internal) ip.
and, i want to do one-to-one nat between two distant public ip

thanks
> 
> Paul
> 
> _______________________________________________
> Shorewall-users mailing list
> Shorewall-users@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/shorewall-users


_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users

Syloe Tech wrote:
> Le vendredi 09 juin 2006 à 10:45 +1000, Paul Gear a écrit :
>> Syloe Tech wrote:
>>> Hello
>>> I have a PC with 2 IPs publics IP1 in eth0 and IP2 in eth0:0
>>> I want to do a redirection of IP2 to an other public IP IP3 in an
other
>>> laptop (other network)
>>> - for all ports : IP2  ---> IP3
>>> - for juste www : IP2:www --> IP3:www
>>>
>>> i tried many combination with shorewall-3.0.7-4, but no sucess
>>> no help from google,
>> Sounds like you want to DNAT that port, or perhaps one-to-one NAT for
>> the entire machine.  The FAQ and setup guides on http://shorewall.net
>> should provide all you need.
> 
> i read this howto 
> http://www.shorewall.net/NAT.htm
> 
> but it work just if i want to do NAT between one public IP and one
> private(internal) ip.
> and, i want to do one-to-one nat between two distant public ip
You mean both of the IPs are not on your network?  If that''s the case
then you''ll probably need an application-level proxy (e.g. squid or
apache as a reverse proxy, or even a simple one like netcat).

If one of the IPs is behind your firewall, you should be able to use
one-to-one NAT.

Paul

Paul Gear wrote:
> Syloe Tech wrote:
>> Le vendredi 09 juin 2006 à 10:45 +1000, Paul Gear a écrit :
>>> Syloe Tech wrote:
>>>> Hello
>>>> I have a PC with 2 IPs publics IP1 in eth0 and IP2 in eth0:0
>>>> I want to do a redirection of IP2 to an other public IP IP3 in
an other
>>>> laptop (other network)
>>>> - for all ports : IP2  ---> IP3
>>>> - for juste www : IP2:www --> IP3:www
>>>>
>>>> i tried many combination with shorewall-3.0.7-4, but no sucess
>>>> no help from google,
>>> Sounds like you want to DNAT that port, or perhaps one-to-one NAT
for
>>> the entire machine.  The FAQ and setup guides on
http://shorewall.net
>>> should provide all you need.
>> i read this howto 
>> http://www.shorewall.net/NAT.htm
>>
>> but it work just if i want to do NAT between one public IP and one
>> private(internal) ip.
>> and, i want to do one-to-one nat between two distant public ip
> 
> You mean both of the IPs are not on your network?  If that''s the
case
> then you''ll probably need an application-level proxy (e.g. squid
or
> apache as a reverse proxy, or even a simple one like netcat).
> 
> If one of the IPs is behind your firewall, you should be able to use
> one-to-one NAT.
>
I know how to do what the OP wants but I will not publish the recipe on the net.
The potential for abuse is too great.

-Tom
-- 
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep@shorewall.net
PGP Public Key   \ https://lists.shorewall.net/teastep.pgp.key

Le jeudi 08 juin 2006 à 19:04 -0700, Tom Eastep a écrit
:
> Paul Gear wrote:
> > Syloe Tech wrote:
> >> Le vendredi 09 juin 2006 à 10:45 +1000, Paul Gear a écrit :
> >>> Syloe Tech wrote:
> >>>> Hello
> >>>> I have a PC with 2 IPs publics IP1 in eth0 and IP2 in
eth0:0
> >>>> I want to do a redirection of IP2 to an other public IP
IP3 in an other
> >>>> laptop (other network)
> >>>> - for all ports : IP2  ---> IP3
> >>>> - for juste www : IP2:www --> IP3:www
> >>>>
> >>>> i tried many combination with shorewall-3.0.7-4, but no
sucess
> >>>> no help from google,
> >>> Sounds like you want to DNAT that port, or perhaps one-to-one
NAT for
> >>> the entire machine.  The FAQ and setup guides on
http://shorewall.net
> >>> should provide all you need.
> >> i read this howto 
> >> http://www.shorewall.net/NAT.htm
> >>
> >> but it work just if i want to do NAT between one public IP and one
> >> private(internal) ip.
> >> and, i want to do one-to-one nat between two distant public ip
> > 
> > You mean both of the IPs are not on your network?  If that's the
case
> > then you'll probably need an application-level proxy (e.g. squid
or
> > apache as a reverse proxy, or even a simple one like netcat).
> > 
> > If one of the IPs is behind your firewall, you should be able to use
> > one-to-one NAT.
> >
> 
> I know how to do what the OP wants but I will not publish the recipe on the
net.
> The potential for abuse is too great.
> 

Hello
Ok , i understand your point of view
I m migrating a production server, and some public dns in france don't
upgrade(refresh) their Data for 48hours
it's for that , i want to redirect connections which arrive in the old ip
public to new ip public

if you are ok, you can send me the howto in my email

Thanks in advance 


Laurent.
> -Tom
> _______________________________________________
> Shorewall-users mailing list
> Shorewall-users@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/shorewall-users


_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users