[TCLUG] redirect with iptables command

Wed Jun 16 16:26:02 CDT 2004

Randy Clarksean wrote:

> I am trying to set up my firewall such that students can come in from 
> the outside world with ssh directly to a Linux box behind the 
> firewall.  I did a quick search and hoped I would come up with the 
> proper iptables command to allow the ssh through a particular port to 
> be passed directly to the machine behind the firewall.
>  
> Below I have listed the iptables command ... it tells me that there is 
> "no chain/target/match by that name"
> Suggestions would be greatly appreciated. (obviously it does not work)
>  
>  
>  
> iptables command
>  
> $IPT -A PREROUTING -p TCP -d 172.16.5.47 --dport 1025 -j DNAT \
>  --to-destination 192.168.1.99:22
>  

the PREROUTING chain is in the nat table in iptables. this should look 
like this(also I`m not shure that -p is case insensetive, so I changed 
this to lower ):

$IPT -t nat -A PREROUTING -p tcp -d 172.16.5.47 --dport 1025 -j DNAT \
 --to-destination 192.168.1.99:22

>  
>  
> Randy
>  
>
>------------------------------------------------------------------------
>
>_______________________________________________
>TCLUG Mailing List - Minneapolis/St. Paul, Minnesota
>Help beta test TCLUG's potential new home: http://plone.mn-linux.org
>Got pictures for TCLUG? Beta test http://plone.mn-linux.org/gallery
>tclug-list at mn-linux.org
>https://mailman.real-time.com/mailman/listinfo/tclug-list
>

_______________________________________________
TCLUG Mailing List - Minneapolis/St. Paul, Minnesota
Help beta test TCLUG's potential new home: http://plone.mn-linux.org
Got pictures for TCLUG? Beta test http://plone.mn-linux.org/gallery
tclug-list at mn-linux.org
https://mailman.real-time.com/mailman/listinfo/tclug-list