Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Do you have the client configured to use 192.168.0.215 as its default gateway?
Are you able to ping google.com from the client?
yes dhcp server runs in 0.215 , and clients ip are sassigned with default g/w as 0.215 in my case client is 0.224
client cant ping to google.com in my test scenario,
requirement is any acess thru browser has to be redirected to gatekeeper port 8080
Well, with the info you've posted so far, I can't see any obvious reason why it wouldn't work. What happens when you try to access google.com with the browser? Do you get some sort of error?
EDIT: I just checked the iptables manual and it says that you should specify "-p TCP" in your rule. I'd also take it a step further and specify the incoming interface.
Code:
REDIRECT
This target is only valid in the nat table, in the PREROUTING and OUT‐
PUT chains, and user-defined chains which are only called from those
chains. It redirects the packet to the machine itself by changing the
destination IP to the primary address of the incoming interface
(locally-generated packets are mapped to the 127.0.0.1 address). It
takes one option:
--to-ports port[-port]
This specifies a destination port or range of ports to use:
without this, the destination port is never altered. This is
only valid if the rule also specifies -p tcp or -p udp.
yes dhcp server runs in 0.215 , and clients ip are sassigned with default g/w as 0.215 in my case client is 0.224 client cant ping to google.com in my test scenario,
requirement is any acess thru browser has to be redirected to gatekeeper port 8080
hi,
have you done NAT?
do you have any DROP statement in the FW regarding ping?
ip_forwarding checked?
Whatever it is, it will need to be able to handle the redirected packets in a fashion similar to a transparent/intercepting proxy. If the daemon you have listening on port 8080 doesn't know how to handle these redirected packets, it won't work right. My guess is that the redirection is working fine, but whatever is listening on 8080 isn't set up right. This would explain why it works OK if you try to connect *directly* to the gateway/firewall.
EDIT: Also, what DNS servers is the client configured to use? One on the gateway/firewall box? Or one on the other side (provided by your ISP, for example)? I'm trying to determine whether your Internet Explorer is having DNS lookup problems.
yes dhcp server runs in 0.215 , and clients ip are sassigned with default g/w as 0.215 in my case client is 0.224
client cant ping to google.com in my test scenario,
requirement is any acess thru browser has to be redirected to gatekeeper port 8080
mmm.. have you specify which DNS server to use?
all proxy software (such as squid etc) set yet?
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
dout in iptable redirecting http traffic?
ort>
