I have a RH8 machine on a private net that has iptables but everything is set to ACCEPT. I need to forward port 162 to another machine. Is there an easy way to do this with iptables without having a full fledged firewall running with a bunch of rules?
As long as iptables is running, you _already_ have a "full-fledged firewall" running. Adding one or two rules is not going to make much of a change.
Personally, I set up and run Shorewall (www.shorewall.net) on every box. Shorewall is just a bunch of scripts that set up your iptables rules the way you want them, but after it runs there is nothing but iptables. Extremely sophisticated, powerful, and yet easy to use, highly recommended. Once set up properly (all of 10 minutes your first time through), all you would need to add to /etc/shorewall/rules would be:
DNAT local:192.168.0.2 local:192.168.0.14 udp 162
Piece of cake. (There might be an error in that rule, since I just typed it up and it "looked right", but in the worst case post again and I'll give you one that does work.)
-- Rodolfo J. Paiz [EMAIL PROTECTED]
-- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list
