flaky iptables?
192.168.192.1/8 web server connects to below
<-->192.168.192.2/8||10.1.1.2/16 firewall connects to web&proxy
<-->10.1.1.1/16||45.45.45.45/24 accelerator proxy to firewall&internet
<-->45.45.45.1 me(show me the website)
default gateway on proxy is firewall
default gateway on firewall is proxy
==webserver==
everything works
==firewall==
echo 1 > /proc/sys/net/ipv4/ip_forward
#TRY get website from firewall
telnet 192.168.192.1 80
#results:worked
GET / HTTP/1.1
#400 Bad Request
#Ping requests are answered
==proxy==
#TRY access website from proxy
telnet 192.168.192.1 80
#results: unable to connect to remote host connection refused
#Once in a while i magically get through through but on second attempts it #closes back up again??
#Ping requests are answered
---------------------
I tried getting the iptables to work on the firewall but it is not solid. Sometimes try telnet from proxy and bam, im able to get telnet session. try again and access denied(then it closes for another 5-10 mins???)
These are the tables I have been trying out so far(FAILED). Maybe somone can help me get this working?
iptables -A FORWARD -i eth2 -o eth1 -j ACCEPT
iptables -A FORWARD -i eth2 -o eth1 -m state --state ESSTABLISHED,RELATED -j ACCEPT
iptables -t nat -A PREROUTING -i eth2 -p all -j REDIRECT --destination 10.1.1.1
iptables -t nat -A PREROUTING -i eth1 -p all -j REDIRECT --destination 192.168.192.1
|