Mark,
the following command translated all connections to
the
-d x.x.x.x ip.. whether from internet or from lan.. i
think you dont have to translate connections from the
LAN to your DMZ.
> iptables -t nat -A PREROUTING -d xxx.xxx.xxx.xxx -p
> tcp -j DNAT --to
> 192.168.0.253
try adding the interface of your internet connection.
iptables -t nat -A PREROUTING -i eth0 -d x.x.x.x -p
tcp
-j DNAT --to 192.168.0.253
assuming eth0 is your interface facing the internet
connection..
then make sure you have allowed FORWARD to/from the
appropriate ports from the lan interface to the dmz
interface..
Regards,
Hanz Y
Discover Yahoo!
Get on-the-go sports scores, stock quotes, news and more. Check it out!
http://discover.yahoo.com/mobile.html
--
Philippine Linux Users' Group (PLUG) Mailing List
[email protected] (#PLUG @ irc.free.net.ph)
Official Website: http://plug.linux.org.ph
Searchable Archives: http://marc.free.net.ph
.
To leave, go to http://lists.q-linux.com/mailman/listinfo/plug
.
Are you a Linux newbie? To join the newbie list, go to
http://lists.q-linux.com/mailman/listinfo/ph-linux-newbie
