[NTLUG:Discuss] Linux as a router
David Stokes
david_stokes at yahoo.com
Tue Jan 25 14:25:00 CST 2000
Ipchains will forward the packets to a system on the 'inside' of the
firewall. lets say xx.xx is your real world 'outside' IP and yy.yy is
your 'inside' address, a request to xx.xx on port 80 (http) can be
forwarded to another port on yy.yy.
Take a look at the docs for the forward section of the ipchains howto.
Here is a snip from it where the autohor shows how to send requests
from ip groups to a rule:
ipchains -A forward -s 192.168.1.0/24 -i eth0 -j good-dmz
ipchains -A forward -s 192.168.1.0/24 -i ppp0 -j good-bad
ipchains -A forward -s 192.84.219.0/24 -i ppp0 -j dmz-bad
ipchains -A forward -s 192.84.219.0/24 -i eth1 -j dmz-good
Remember you can forward ports as well as IP numbers.
One interesting variant is to direct certain ip numbers (say the
cable modem address of your in-laws) to one httpd server and the rest
of the world to another httpd server.
--- Bobby Wrenn <bobby at wrennest.com> wrote:
> I have install a linux router using ipchains. The one thing I haven't
> found reference to is port forwarding.
>
> I am masquerading a non-routable network behind one routable IP. I
> want
> to redirect specific services to only the machine running the service
> (http, ftp, etc.). I think I read that ipchains will not do this. Is
> there a way to do it?
>
> Thanks
> Bobby
>
> _______________________________________________
> http://ntlug.org/mailman/listinfo/discuss
>
=====
-David Stokes-
david_stokes at yahoo.com
What IF the Hokey-Pokey is what it is all about?
__________________________________________________
Do You Yahoo!?
Talk to your friends online with Yahoo! Messenger.
http://im.yahoo.com
More information about the Discuss
mailing list