I'm still new to this, but I think you're looking for a rule like:
# ipchains -A forward -p TCP -s 0/0 www -d server.ip www -j ACCEPT
-A forward ... add this rule to the 'forward' chain
-p TCP ... applies to TCP connections
-s 0/0 www ... any incoming port 80 connection
-d server.ip www ... routed to port 80 on server.ip
-j ACCEPT ... accept the packet
This assumes that the RH60 system is already performing MASQ for the
intranet.
(Corrections solicited!)
----- Original Message -----
From: Anna Valsami <[EMAIL PROTECTED]>
Has any of you ever tried doing NAT under Linux?
I have a client who wants to make available to the public (through Internet)
a STRATUS server which resides behind his RH6.0 Linux (kernel 2.2.5-15 and
ipchains for masquerading). I understand that I need to make a rule using
ipchains in order to assign a valid ip (from the subnet that the ISP has
assigned) to an invalid ip (from his private network) but I don't know if
this is the right way. Has anybody seen it working in real life? Is there
any other tool for NAT under Linux?
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
