John P. Looney wrote:
> On Tue, Sep 14, 2004 at 02:52:23PM +0100, P at draigBrady.com mentioned:
>>>I want to forward all traffic directed to 172.18.2.35 to 192.168.111.2
>>I thought one DNAT rule would do it, but apparently not :-(
>>>>The rule I added was:
>>iptables -t nat -A PREROUTING -d 172.18.2.35 -j DNAT --to 192.168.111.2
>>>>Note also /proc/sys/net/ipv4/ip_forward is 1
>> That should work fine.
> 192.168.111.2 uses 192.168.111.1 as a gateway, yes?
yes. I can communicate fine with 192.168.111.2
from within the box.
Note also, all tables are ACCEPT at present.
> I think it's time to whip out tcpdump...
iptables -t nat -L -v shows the initial telnet SYNs matching
the above rule, but tcpdump show they're not sent
across the 192.168.111.1 interface?
--
Pádraig Brady - http://www.pixelbeat.org
--- Following generated by rotagator ---
Redraw/Clear text console
If your console application is messed up
(with wall messages for e.g.) a Ctrl-L will
cause a redraw.
--
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
