Displaying 20 results from an estimated 10000 matches similar to: "Using iptables for failover"
2007 Sep 25
7
DNAT PREROUTING issue with IPTABLES
Hi,
I have an DNAT ISSUE with PREROUTING.
This is my setup.
I have 2 firewalls running iptables.
Pls asume 1.2.3.4/29 is the internet interace of FIRST firewall.
2.3.4.5/29 is the internet interface of SECOND firewall. it has DMZ zone. in
that DMZ zone, mail server runnig @ 192.168.100.3
Now I want to DNAT port 25 of FISRT firewall ( i.e - its ip address -
1.2.3.4/29) to the internet ip
2011 Jan 31
3
redirecting traffic using iptables
Hi.
I have two internet connections, the ADSL2+ is very
very cheap (but fast 10mb) and I want to use the SHDSL (2mb)
only for mail,ssh,http OUT and the ADSL2+ only for
surfing.
I all works fine if people specify the proxy in the
browser, but in case like flash it of no use.
Further if I can make the 80/443 traffic go through
the proxy only, its an added bonus. If this can be
done, fine. Bue I
2002 May 15
3
Open UDP ports
Hi,
When I run an nmap with UDP port scan option against one of the machines
behind the shorewall, it shows tons of open ports on that server. I am sure
I just missed something in the configuration. Can anyone suggest.
Val
_________________________________________________________________
Join the world’s largest e-mail service with MSN Hotmail.
http://www.hotmail.com
2008 Dec 04
4
iptables questionson CentOS
Hi,
I know these are a few iptbales questions. NOT CentOS, anyway, I am
running a firewall on centos 5.x.
If you can response, it would be fine.
I want to add a SNAT rule for one user in LAN to access one particular
destination on the internet.
Let's say www.centos.org
I added the below rule. But . it does NOT work
Pls assume 1.2.3.4 is the real ip of the firewall.
ip address
2010 Mar 05
2
Not another SAMBA through a firewall post
I suppose a few questions pop up on this list about access Samba through a firewall. ?I have been very successful running Samba through a firewall, until today. ?I hit a stumbling block.
I have a Linux Firewall with the public IP Address of 134.x.x.140 <it is not the exact ip address, but close>. ?I am using NAT and port forwarding to send traffic destined for 137, 138,139, and 445 for BOTH
2002 May 17
19
Shorewall 1.3 Beta 1
The 3.1 Beta is now available -- check the Shorewall home page.
--
Tom Eastep \ Shorewall - iptables made easy
AIM: tmeastep \ http://www.shorewall.net
ICQ: #60745924 \ teastep@shorewall.net
2007 Sep 25
1
DNAT PREROUTING issue with iptables
Hi,
I have an DNAT ISSUE with PREROUTING.
This is my setup.
I have 2 firewalls running iptables.
Pls asume 1.2.3.4/29 is the internet interace of FIRST firewall.
2.3.4.5/29 is the internet interface of SECOND firewall. it has DMZ zone. in
that DMZ zone, mail server runnig @ 192.168.100.3
Now I want to DNAT port 25 of FISRT firewall (i.e - its ip address -
1.2.3.4/29) to the internet ip
2018 May 03
5
[Bug 1255] New: nftables SNAT is not working
https://bugzilla.netfilter.org/show_bug.cgi?id=1255
Bug ID: 1255
Summary: nftables SNAT is not working
Product: nftables
Version: unspecified
Hardware: All
OS: All
Status: NEW
Severity: critical
Priority: P5
Component: kernel
Assignee: pablo at netfilter.org
2003 Aug 28
5
Router for giving more than 1 ip
Hi i have a debian box working as a router.. it works quite well, now
i want to give more than 1 ip.. is it possible to do it? some of them
must be an open ip.. i mean.. all ports opened is it possible? how
should i do it?
Here is my nat.sh script just in case someone wants it.. (comments r
in spanish.. and not right)
Thanks in advance,
#!/bin/sh
echo "AthoS LaN Generando
2007 Mar 07
4
PREROUTING - DNAT with iptables for an ASTERISK BOX
Hi,
I am running a ASTERISK BOX behind a firewall. It is at DMZ .
Now I want to connect to my ASTERISK BOX from Internet. So I want to DNAT.
How can I do it?
Pls assume that ip address that connects to Internet on firewall is
1.2.3.4and is attached to eth0.
And ASTERISK BOX is 192.168.101.23
Then, What is the rule (PREROUTING) for it? What is the port to DNAT?
I think udp 5060. So I have
2004 Sep 30
2
2 DSL link, DNAT & SNAT
Sorry for the long descritpion of the problem, I''d like to know If I
misunderstand something or if I meet an intrinsic limit of my setup.
217.58.51.162 HDSL eth1 - SRV_XP: 192.168.254.10
eth0: 192.168.254.1 -----+------------------+-------
81.121.243.250 ADSL eth3 -
I want to allow incoming pptp request (port 1723) to be forwarded to
srv_xp
2006 Dec 20
3
iptables command to view just nat/forward info by ip
Hi there... does anyone know of a handy iptables command to look at
existing nat rules?
I tried:
iptables -t nat -L
Which was close, but the problem is that the DNAT and SNAT list the
reverse DNS for the IP's, when I would rather see just pure IP's.
I have been reading the man pages and google looking for an answer as well.
Thanks!
2020 Feb 22
1
[Bug 1408] New: The Check option of iptables does not work as expected
https://bugzilla.netfilter.org/show_bug.cgi?id=1408
Bug ID: 1408
Summary: The Check option of iptables does not work as expected
Product: nftables
Version: unspecified
Hardware: arm
OS: Ubuntu
Status: NEW
Severity: minor
Priority: P5
Component: iptables over nftable
Assignee:
2002 Oct 14
1
Xbox Connection
Hi all wondered if you could help me with this little problem I have.
I''m wanting to connect my Xbox to the net for gaming and have the following set-up
3 interfaces on my Linux box
eth0 :net (connected to my cable modem)
eth1 :me (IP range 192.168.3.0)
eth2 :loc (IP range 192.168.0.0)
My Xbox is connected through a hub to eth2
I need to forward TCP and UDP packets to my PC which is
2009 Jul 13
0
Iptables issues again
I know that I have asked this before of the list. However we just changed
ISP and ip's and I'm having this issue again. I have a linux firewall
using iptables with the following config
eth0 = WAN 1
eth1 = LAN 1
eth2 = WAN 2
I'm trying to forward all traffic that makes a request from eth2 to an
internal IP on eth1.
These are the folloing rules that I have set up.
iptables -t nat -A
2006 Dec 15
4
Iptables rule help
Hello my isp has blocked outgoing and incoming connection for port 5060 . I
have ssh access to server so i want to send all traffic from port 5091 to
port 5060 of asterisk .so i tried
iptables -t nat -A PREROUTING -i eth0 -p udp --dport 5091 -j DNAT --to
127.0.0.1:5060
Now my softphone is able to register with asterisk but it isnt able to make
any calls .
bindport = 5091 in my sip.conf under
2013 Sep 10
4
[Bug 850] New: DNAT applied even after deleting the IP Tables DNAT Rule
https://bugzilla.netfilter.org/show_bug.cgi?id=850
Summary: DNAT applied even after deleting the IP Tables DNAT
Rule
Product: iptables
Version: 1.4.x
Platform: All
OS/Version: All
Status: NEW
Severity: major
Priority: P5
Component: iptables
AssignedTo: netfilter-buglog at
2005 Jun 26
1
Re: Shorewall-users Digest, Vol 31, Issue 48
On Friday 24 June 2005 20:57, Derek Vincent wrote:
>>Hello all,
>>
>>I have shorewall setup with 3 SNAT entries for external IP address''s to
>>a single IP internal address. I am wondering how to limit access based
>>on the source IP address.
>>ex.
>> EXT IP 1 access only to port 25
>> EXT IP 2 access only to port 443
>> EXT IP 3
2007 Jun 25
2
iptables rule (MAC filtering)
Hi all,
I've a CentOS box which as two NIC; this box is also a router for LAN
subnet:
------------------------------------
| eth0 (external) 172.0.0.1 |
| eth1 (internal) 192.168.1.1 |
------------------------------------
|
LAN clients (192.168.1.2+)
I want to allow http acces only for two LAN boxes; an only http access,
which means that others protocols as smtp, pop3,
2014 Jan 23
1
[Bug 887] New: iptables.xslt wrong "match" -m handling
https://bugzilla.netfilter.org/show_bug.cgi?id=887
Summary: iptables.xslt wrong "match" -m handling
Product: iptables
Version: 1.4.x
Platform: All
OS/Version: Debian GNU/Linux
Status: NEW
Severity: major
Priority: P5
Component: unknown
AssignedTo: netfilter-buglog at lists.netfilter.org