[NTLUG:Discuss] Linux as a router

David Stokes david_stokes at yahoo.com
Tue Jan 25 14:25:00 CST 2000


Ipchains will forward the packets to a system on the 'inside' of the
firewall. lets say xx.xx is your real world 'outside' IP and yy.yy is
your 'inside' address, a request to xx.xx on  port 80 (http) can be
forwarded to another port on yy.yy. 

Take a look at the docs for the forward section of the ipchains howto.
Here is a snip from it where the autohor shows how to send requests
from ip groups to a rule:
	ipchains -A forward -s 192.168.1.0/24 -i eth0 -j good-dmz
       ipchains -A forward -s 192.168.1.0/24 -i ppp0 -j good-bad
       ipchains -A forward -s 192.84.219.0/24 -i ppp0 -j dmz-bad
       ipchains -A forward -s 192.84.219.0/24 -i eth1 -j dmz-good
Remember you can forward ports as well as IP numbers.

  One interesting variant is to direct certain ip numbers (say the
cable modem address of your in-laws) to one httpd server and the rest
of the world to another httpd server.

--- Bobby Wrenn <bobby at wrennest.com> wrote:
> I have install a linux router using ipchains. The one thing I haven't
> found reference to is port forwarding.
> 
> I am masquerading a non-routable network behind one routable IP. I
> want
> to redirect specific services to only the machine running the service
> (http, ftp, etc.). I think I read that ipchains will not do this. Is
> there a way to do it?
> 
> Thanks
> Bobby
> 
> _______________________________________________
> http://ntlug.org/mailman/listinfo/discuss
> 

=====
-David Stokes-
david_stokes at yahoo.com

What IF the Hokey-Pokey is what it is all about?
__________________________________________________
Do You Yahoo!?
Talk to your friends online with Yahoo! Messenger.
http://im.yahoo.com




More information about the Discuss mailing list