The config Tom gave to you treats only incoming traffic. What arrives on 200.200.10.10:2181(tcp) will be pushed to 10.101.7.1:2180(tcp)
The response will be done by your machine itself, either by highport or whatever is configured in the application running on 10.101.7.1 _____ Von: Orlandinei Vujanski [mailto:orlandi...@gmail.com] Gesendet: Dienstag, 27. April 2010 22:59 An: Shorewall Users; teas...@shorewall.net Betreff: Re: [Shorewall-users] Help - Please Thanks Tom But my internal equipment only responds on port 2180, how do they respond to this request? 2010/4/27 Tom Eastep <teas...@shorewall.net> On 04/27/2010 09:34 AM, Orlandinei Vujanski wrote: > How do in Shorewall? > > > iptables -t nat -A PREROUTING-d 200.200.10.10 -p tcp - dport 2181 -j > DNAT - to 10.101.71: 2180 > iptables -A FORWARD -d 10.101.7.1 -p tcp -dport 2180 - syn -j ACCEPT /etc/shorewall/rules: DNAT net loc:10.101.7.1:2180 <http://10.101.7.1:2180/> tcp 2181 - 200.200.10.10 -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net <http://shorewall.net/> \________________________________________________ ---------------------------------------------------------------------------- -- _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
------------------------------------------------------------------------------
_______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
