RE: IPTABLES Routing

[Larry Brown]

Title: Message

Are you sure you want clear text passwords being passed across the internet?  You would be served much better using ssh instead.  Whichever you choose, you can do either with iptables.   iptables –A prerouting –t nat –p TCP –d <external static IP address> --dport <port you want routed to the internal SCO box> -j dnat --to <IP address of the SCO box>:<port number you want the port that is being forwarded to arrive on at the SCO box>   ex: iptables –A prerouting –t nat –p TCP –d 213.23.45.2 --dport 22 –j dnat --to 192.168.0.5:22   if you want this to be port 10000 on the firewall then you can do--dport 10000 and –to 192.168.0.5:22     You will then need a line for the port as follows:   iptables –A FORWARD –i eth<number of the external ethernet card> -p tcp --dport  <port number on firewall> -j ACCEPT   ex: iptables –A FORWARD –i eth0 -p tcp --dport 10000 -j ACCEPT   Again, I would strongly discourage using telnet across the Internet.   Larry S. Brown Dimension Networks, Inc. (727) 723-8388   -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]On Behalf Of Ralph Guzman Sent: Saturday, March 22, 2003 3:06 AM To: [EMAIL PROTECTED] Subject: IPTABLES Routing   Here is my situation:   I have a Redhat 8.0 server setup as a DSL gateway/firewall using 2 network cards. One NIC for the internal IP and other with the public IP. We have a SCO server that we telnet to from our internal network. This server is setup with a modem for when we want to connect to it from a remote location. But now we would like to connect to it remotely through the Internet.   So my question is, can our Redhat 8.0 server be setup so that we can telnet into it, then have it redirect incoming telnet connection to the SCO server on our private network?   Is this possible, or must I also setup the SCO server with it's own public IP address?   Can this be done with IPTABLES or other, if so how can I go about doing this?   Your help is appreciated.