[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ale] port forwarding for iptables.

Subject: [ale] port forwarding for iptables.
From: jknapka at kneuro.net (JK)
Date: Tue, 09 Jun 2009 11:42:14 -0600
In-reply-to: <[email protected]>
References: <[email protected]> <[email protected]>

Jim Kinney wrote:
> all of the -j LOG calls will never trigger because the packet has
> already left the chain due to the line before it with the -j ACCEPT or
> -j DNAT. Put the log before the jump call.
> 
> -j REDIRECT is what you want to use. DNAT is for IP address. REDIRECT
> is for port forwarding.

If I am not mistaken, REDIRECT only allows you to forward to a port on
the local machine.  If you want to forward on to another machine, you
need DNAT.  "man iptables" backs me up on this, yay.

-- JK

--
Still sigless.

Follow-Ups:
- [ale] port forwarding for iptables.
  - From: jim.kinney at gmail.com (Jim Kinney)
- [ale] port forwarding for iptables.
  - From: atlantageek at gmail.com (Atlanta Geek)

References:
- [ale] port forwarding for iptables.
  - From: atlantageek at gmail.com (Atlanta Geek)
- [ale] port forwarding for iptables.
  - From: jim.kinney at gmail.com (Jim Kinney)

Prev by Date: [ale] port forwarding for iptables.
Next by Date: [ale] port forwarding for iptables.
Previous by thread: [ale] port forwarding for iptables.
Next by thread: [ale] port forwarding for iptables.
Index(es):
- Date
- Thread