Mark Schanuel wrote:
> Using ipfwadm to firewall a web server and masqurade workstations in a
> small office. PPP to ISP and single ethernet segment for the LAN.
> Masqurade works fine but I am not able to forward tcp requests to my web
> server which resisdes inside the firewall. Workstations can see both
> serves and the internet. Internet users (external) who browse to the
> firewall see the default Apache page on the firewall server and not the
> pages on the internal web server.
>
> Here are my rc.local entries (Running RedHat 2.0.31)
> #This one is supposed to forward tcp to my web server (not working)
> ipfwadm -F -a accept -b -P tcp -S 0.0.0.0/0 1024:65535 -D 192.168.1.2 80
This will forward packets which have a destination address of
192.168.1.2. If someone outside of your LAN sends a packet to
192.168.1.2 it will either go to *their* internal LAN (if they are
using this address), or it will be discarded. It certainly won't be
routed to your LAN.
If they specify the external address of your firewall (the one which
your ISP assigned to your PPP link), the packet will be accepted by
your firewall.
If you want your firewall to forward HTTP requests to another web
server, you will need to run a port forwarder on port 80 on the
firewall.
--
Glynn Clements <[EMAIL PROTECTED]>
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
