Dear All, pls find out the problems from following iptables script
kernel moduls loaded from rc.local < #!/bin/sh # # This script will be executed *after* all the other init scripts. # You can put your own initialization stuff in here if you don't # want to do the full Sys V style init stuff. touch /var/lock/subsys/local # Module to track the state of connections modprobe ip_conntrack # Load the iptables active FTP module, requires ip_conntrack modprobe ip_conntrack_ftp # Load iptables NAT module when required modprobe iptable_nat # Module required for active an FTP server using NAT modprobe ip_nat_ftp > iptable file from /etc/sysconfig/iptable < # Generated by iptables-save v1.2.7a on Mon Oct 3 17:20:21 2005 *filter :INPUT ACCEPT [0:0] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [0:0] COMMIT # Completed on Mon Oct 3 17:20:21 2005 # Generated by iptables-save v1.2.7a on Mon Oct 3 17:20:21 2005 *mangle :PREROUTING ACCEPT [0:0] :INPUT ACCEPT [0:0] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [0:0] :POSTROUTING ACCEPT [0:0] COMMIT # Completed on Mon Oct 3 17:20:21 2005 # Generated by iptables-save v1.2.7a on Mon Oct 3 17:20:21 2005 *nat :PREROUTING ACCEPT [0:0] :POSTROUTING ACCEPT [0:0] :OUTPUT ACCEPT [0:0] # all external incoming request on all ports -A PREROUTING -d 210.211.252.10 -p tcp -j DNAT --to-destination 192.168.1.200 # all external incoming request on only http port -A PREROUTING -d 210.211.252.10 -p tcp -m tcp --dport 80 -j DNAT --to-destination 192.168.1.200 # all internal incoming requests on all ports -A POSTROUTING -d 192.168.1.200 -p tcp -j SNAT --to-source 192.168.1.1 # regular system masquerade / outgoing request proto tcp all ports open -A POSTROUTING -s 192.168.1.2 -d 202.65.54.10 -p tcp -j MASQUERADE # IP Phone masquerade / outgoing request all proto and ports are open -A POSTROUTING -s 192.168.1.202 -j MASQUERADE COMMIT # Completed on Mon Oct 3 17:20:21 2005 > Thanks and regards Swapnil K. System Group Modular Infotech Pvt. Ltd. 26 Electronic Co-operative Estate, Pune Satara Road, Pune. 411 009. Maharshtra. INDIA. Ph: +91-20-24226612 Ext. 206. Fax: +91-20-24225896. E-mail: [EMAIL PROTECTED] Website: www.modular-infotech.com _______________________________________________ ilugd mailinglist -- ilugd@lists.linux-delhi.org http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/ilugd@lists.linux-delhi.org/
