iptables - lo interface problem
Rodolfo Alcázar
rodolfo.alcazar at padep.org.bo
Mon Aug 23 20:39:45 UTC 2004
Pablo, estos son unos ovnis. Respondieron super rápido. Dos soluciones al
problema que te comenté, aunque la segunda la intenté y no funcionó, talvez
hice algo mal:
----- Original Message -----
From: "Mike Burger" <mburger at bubbanfriends.org>
To: "For users of Fedora Core releases" <fedora-list at redhat.com>
Sent: Monday, August 23, 2004 3:52 PM
Subject: Re: iptables - lo interface problem
>
> > > Errr, this is a classic case for a split DNS setup, you need to setup
> > > DNS to point to it's DMZ interface on/within the firewall, or just add
> > > it in the hosts file, don't try to connect to the external interface
> > > and use the NAT, it don't work that way. I could be wrong.
> > >
> > > Yang
> >
> > Thanks, Yang. I didn´t heard about split DNS setup. I will try it. Best
> > regards.
>
> In the meantime, you can use something like this (I used this until split
> DNS came into play on my network):
>
> $IPTABLES -t nat -A PREROUTING -i internal-interface -d
your.external.ip.address -j DNAT --to your.internal.destination.IP
> $IPTABLES -t nat -A POSTROUTING -o internal-interface -d -s
your.internal.netowrk/netmask -j SNAT --to firewall's.internal.ip.address
> --
> Mike Burger
> http://www.bubbanfriends.org
>
> Visit the Dog Pound II BBS
> telnet://dogpound2.citadel.org or http://dogpound2.citadel.org
>
> To be notified of updates to the web site, visit
> http://www.bubbanfriends.org/mailman/listinfo/site-update, or send a
> message to:
>
> site-update-request at bubbanfriends.org
>
> with a message of:
>
> subscribe
>
>
> --
> fedora-list mailing list
> fedora-list at redhat.com
> To unsubscribe: http://www.redhat.com/mailman/listinfo/fedora-list
More information about the fedora-list
mailing list