Re: iptables and NAT [SOLVED]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: users@xxxxxxxxxxxxxxxxxxxxxxx
Subject: Re: iptables and NAT [SOLVED]
From: Jorge Fábregas <jorge.fabregas@xxxxxxxxx>
Date: Fri, 28 Jan 2011 07:07:33 -0400
Delivered-to: users@xxxxxxxxxxxxxxxxxxxxxxx
In-reply-to: <4D425000.6010609@xxxxxxxxx>
List-archive: <http://lists.fedoraproject.org/pipermail/users>
List-help: <mailto:[email protected]?subject=help>
List-id: Community support for Fedora users <users.lists.fedoraproject.org>
List-post: <mailto:[email protected]>
List-subscribe: <https://admin.fedoraproject.org/mailman/listinfo/users>, <mailto:[email protected]?subject=subscribe>
List-unsubscribe: <https://admin.fedoraproject.org/mailman/listinfo/users>, <mailto:[email protected]?subject=unsubscribe>
References: <4D3EA2AF.6010002@xxxxxxxxx> <1295975656.19484.2.camel@xxxxxxxxxxxxxxxxxxxxxxxxxxx> <4D3F0AE3.9030800@xxxxxxxxx> <201101251436.13892.gene.heskett@xxxxxxxxx> <4D40445E.9080007@xxxxxxxxx> <1296060706.31561.2.camel@xxxxxxxxxxxxxxxxxxxxxxxxxxx> <4D425000.6010609@xxxxxxxxx>
Reply-to: Community support for Fedora users <users@xxxxxxxxxxxxxxxxxxxxxxx>
Sender: users-bounces@xxxxxxxxxxxxxxxxxxxxxxx
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.2.13) Gecko/20101209 Fedora/3.1.7-0.35.b3pre.fc14 Thunderbird/3.1.7

On 01/28/2011 01:11 AM, Jatin K wrote:
> um  target     prot opt source               destination
> 2    DNAT       all  --  0.0.0.0/0            192.168.131.133  tcp dpt:80       to:192.168.131.131:80

This line doesn't look right. Is it doing DNAT For the host
192.168.131.133 (converting it to 192.168.131.131?  This doesn't make
sense as 192.168.131.133 belongs to your internal network.

> Chain POSTROUTING (policy ACCEPT)
> num  target     prot opt source               destination
> 1    MASQUERADE  all  --  192.168.131.131/24        0.0.0.0/0

192.168.131.131/24 is incorrect. If it's a particular host it should be
192.168.131.131/32 or simply 192.168.131.131.   If it's for the network
then it would be 192.168.131.0/24 (proper way to specify network).

And again, just like Tim mentioned,  you're not firewalling anything.
At this point you're just basically routing & NATing.

HTH,
Jorge
-- 
users mailing list
users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines

Follow-Ups:
- Re: iptables and NAT [SOLVED]
  - From: Jatin K

References:
- iptables and NAT
  - From: Jatin K
- Re: iptables and NAT
  - From: Tim
- Re: iptables and NAT
  - From: Jatin K
- Re: iptables and NAT
  - From: Gene Heskett
- Re: iptables and NAT
  - From: Jatin K
- Re: iptables and NAT
  - From: Tim
- Re: iptables and NAT [SOLVED]
  - From: Jatin K

Prev by Date: Re: Running Blender 2.56 on Fedora 13 and 14
Next by Date: internet connection tester script
Previous by thread: Re: iptables and NAT [SOLVED]
Next by thread: Re: iptables and NAT [SOLVED]
Index(es):
- Date
- Thread

[Index of Archives] [Current Fedora Users] [Fedora Desktop] [Fedora SELinux] [Yosemite News] [Yosemite Photos] [KDE Users] [Fedora Tools] [Fedora Docs]

Powered by Linux