On Thursday 06 June 2002 8:10 pm, [EMAIL PROTECTED] wrote: > Hi all- > > I have a linux box with 1 network card connected the internet with 7 > internet IP's, and 1 network card and internal ip. I'm trying to forward > a port from one of the internet ip's aliased to it across the firewall to > internal. Here's the forward rule that I use: > > $IPTB -A FORWARD -d 1.2.3.4 -p tcp --dport 3389 -j ACCEPT > > When I connect to the specified IP address it doesn't work. If I take the > destination IP out it works fine. Any ideas as to why it won't work with > the destination IP?
Presumably you are doing DNAT at the same time. Is 1.2.3.4 the original destination address before translation, or the real destination address of the translated packet ? PREROUTING happens before FORWARDing. Antony.
