Hi Charles,
Thanks for the reply. Only question that I have is that I'm running RH6.2,
isnt ipmasqadm a pre 6.2 utility, or is it OK to install on RH6.2?
Thanks
Jeremy
I just did this the other day.
Assumptions: You have correctly setup your firewall to support multiple
real IPs (i.e. you have for example an eth0:0 interface setup and
working).
You would do something like
ipchains -A forward -i eth0:0 -j MASQ
ipmasqadm portfw -a -P tcp -L <real_ip> 80 -R 192.168.1.54 80
where <real_ip> is assigned to the interface eth0:0
Add more ipmasqadm lines for the different ports. Some ports like ftp will
require an additional line with udp for the protocol.
The same applies to a single real IP situation, except that once you
forward a port, the firewall machine will no longer respond to it. This
may be obvious, but just want to be clear.
charles
On Mon, 4 Sep 2000, Chris Dowling wrote:
> On Mon, 4 Sep 2000, Jeremy Russell wrote:
>
> > Hi,
> > How can I use ipchains to forward Internet real IP address to machines
> > inside our firewall using 192.168 IP address range. ie I would like to
make
> > certain machines inside our firewall able to be accessed from the
Internet,
> > restricted to only certain ports if possible?
> >
> > Thanks
> > Jeremy
> >
>
> ipmasqadm apparently does what you want, although when I tried it the
> other day it didn't really work for me... you can still try :)
----------------------------------------------------------------------
Jeremy Russell
Technical Services
Ampac Technologies Pty Ltd
97 Walters Drive
Osborne Park
Western Australia, 6017
Tel + 61 8 92423333
Fax + 61 8 92423334
E-mail [EMAIL PROTECTED]
WEB http://www.ampac.com.au/
Head Office: ACN 009 104 152
Ampac Customer Service Offices: Western Australia, Victoria,
New South Wales, Queensland, South Australia, New Zealand
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
