I just did this the other day.
Assumptions: You have correctly setup your firewall to support multiple
real IPs (i.e. you have for example an eth0:0 interface setup and
working).
You would do something like
ipchains -A forward -i eth0:0 -j MASQ
ipmasqadm portfw -a -P tcp -L <real_ip> 80 -R 192.168.1.54 80
where <real_ip> is assigned to the interface eth0:0
Add more ipmasqadm lines for the different ports. Some ports like ftp will
require an additional line with udp for the protocol.
The same applies to a single real IP situation, except that once you
forward a port, the firewall machine will no longer respond to it. This
may be obvious, but just want to be clear.
charles
On Mon, 4 Sep 2000, Chris Dowling wrote:
> On Mon, 4 Sep 2000, Jeremy Russell wrote:
>
> > Hi,
> > How can I use ipchains to forward Internet real IP address to machines
> > inside our firewall using 192.168 IP address range. ie I would like to make
> > certain machines inside our firewall able to be accessed from the Internet,
> > restricted to only certain ports if possible?
> >
> > Thanks
> > Jeremy
> >
>
> ipmasqadm apparently does what you want, although when I tried it the
> other day it didn't really work for me... you can still try :)
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
