From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.54) id 1F03Fs-00055a-0l for garchives@archives.gentoo.org; Fri, 20 Jan 2006 20:53:08 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.5/8.13.5) with SMTP id k0KKp2dE022974; Fri, 20 Jan 2006 20:51:02 GMT Received: from uproxy.gmail.com (uproxy.gmail.com [66.249.92.197]) by robin.gentoo.org (8.13.5/8.13.5) with ESMTP id k0KKn2F9007016 for ; Fri, 20 Jan 2006 20:49:03 GMT Received: by uproxy.gmail.com with SMTP id c2so81120ugf for ; Fri, 20 Jan 2006 12:49:02 -0800 (PST) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=n7xYAkb5soZQg99CzImp0jpKBCRkx9iHADAzYn2jAsd1Y9gONkIaAwHAWtKUKxOB3/3o93AmwaBZbyBFCK7qzEpLBOWPAw5D31TBytvmNi6gQQzaL8ORSFblf+1z191bWCJVUmITY+2p3zS6lCbfk5vteT7elIjgAwsy0U9wZa0= Received: by 10.49.22.15 with SMTP id z15mr178837nfi; Fri, 20 Jan 2006 12:49:02 -0800 (PST) Received: by 10.48.214.13 with HTTP; Fri, 20 Jan 2006 12:49:02 -0800 (PST) Message-ID: <9b1675090601201249q6d4ff349j98b3c3a04205181e@mail.gmail.com> Date: Fri, 20 Jan 2006 13:49:02 -0700 From: Trenton Adams To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] iptables question In-Reply-To: <200601201249.25509.dmitry@athabascau.ca> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Disposition: inline References: <200601201249.25509.dmitry@athabascau.ca> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by robin.gentoo.org id k0KKn2F9007016 X-Archives-Salt: 102263fc-155f-44b9-90fe-0fc63ebdc30e X-Archives-Hash: 965d08b4025629f50e315a04137aaf9e Under the *nat rule, -A PREROUTING -i eth0 -p tcp -m tcp --dport 58443 -j DNAT --to 192.168.7.1:443 Under the *filter rules. -A ADAMS-FW-INPUT -i eth0 -m state --state NEW -m tcp -p tcp --dport 443 -j ACCEPT On 1/20/06, Dmitry S. Makovey wrote: > > somewhat offtopic, but since I need any help I can get: > > how do I redirect trafic from outward facing interface > (192.168.1.114:80) to loopback device (127.0.0.1:80) ? > > my most obvious trick: > iptables -t nat -A PREROUTING -p tcp -d 192.168.1.114 --dport 80 \ > -j DNAT --to 127.0.0.1:80 > and > echo 1 > /proc/sys/net/ipv4/ip_forward > didn't help. Machine which is opening connection is hanging there > indefinitely... > > what did I miss? > > -- > Dmitry Makovey > Web Systems Administrator > Athabasca University > (780) 675-6245 > > > -- gentoo-user@gentoo.org mailing list