Re: ipportfw does not really forward

Juanjo Ciarlante (irriga@impsat1.com.ar)
Thu, 10 Sep 1998 11:53:53 -0300

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: kuznet@ms2.inr.ac.ru: "Re: static allocation of space in the kernel"
Previous message: Dave Cinege: "Re: Merchant account (VISA) software"

On Thu, Sep 10, 1998 at 10:36:42AM +0200, Henning Emmrich wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
>
> Hi,
> I tried to forward a request for host 193.159.175.194 80 to
> 192.168.100.30 80, which is a web server. I use 2.1.112 kernel ip-masq and
> ip-masq-ipportfw enabled, the command I tried out is ipmasqadm portfw -a
> - -P tcp -L 193.159.175.194 80 -R 192.168.100.30 80 . The output of tcpdump
> looks good, but there is no connect. At that point I'm using no ip-filters
> and no masquerading, is that o.k?
>
> Can you figure out, how to solve this problem?
Currently portfw does sortof "reverse-masq", so it does require
direct masq configured:
ipchains -I forward -p tcp -s 192.168.100.30/32 80 -j MASQ

BTW You can see nice masq status in /proc/net/ip_masq/entries

Regards

-- -- Juanjo http://juanjox.home.ml.org/ You don't need an hologram to know... Nor you need to sell your brain to anyone. You can feel it. It's Linux.

- To unsubscribe from this list: send the line "unsubscribe linux-net" in the body of a message to majordomo@vger.rutgers.edu

Next message: kuznet@ms2.inr.ac.ru: "Re: static allocation of space in the kernel"
Previous message: Dave Cinege: "Re: Merchant account (VISA) software"