LinuxQuestions.org
Help answer threads with 0 replies.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
Reload this Page ident port forwarding problem
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 10-22-2003, 01:40 AM   #1
sedulous
LQ Newbie
 
Registered: Aug 2003
Posts: 24

Rep: Reputation: 15
ident port forwarding problem

The iptable addition is there to redirect incoming port 113(ident) to the machine with the identd (192.168.0.4), however its not working!

here is my iptables script. As far as I know the identdaemon on 192.168.0.4 cannot listen on the port. What is wrong with the script!?


Quote:
############ Iptables setup ###############
extint="eth1" # External Interface (internet)
intint="eth0" # Internal Interface (internal lan)
extip="144.132.35.236" # External IP
intip="192.168.10.1" # Internal IP
#
# Enable ipforward, ping echos and ipdynamic addressing
#
echo "1" > /proc/sys/net/ipv4/ip_forward
echo "1" > /proc/sys/net/ipv4/ip_dynaddr
echo "0" > /proc/sys/net/ipv4/icmp_echo_ignore_all
echo "0" > /proc/sys/net/ipv4/icmp_echo_ignore_broadcasts
#
###############################################

###############################################
#
# Set input, forward policies to DROP everything
# and flush existing rules
#
#/sbin/iptables -P INPUT DROP
/sbin/iptables -F INPUT
#/sbin/iptables -P FORWARD DROP
#we want to allow everything out
/sbin/iptables -P OUTPUT ACCEPT
/sbin/iptables -F OUTPUT
#
###############################################
#
# Enable local interface
#
/sbin/iptables -A INPUT -i lo -j ACCEPT
#
# End local services
#
###############################################

# Squid Server
#
/sbin/iptables -A INPUT -i $extint -p tcp --sport 80 -d $extip --dport 1024:65535 -j ACCEPT

###############################################
#
# accept all pings
#
/sbin/iptables -A INPUT -i $extint -p icmp -j ACCEPT
#
###############################################

# Masquerade and Transparent Proxying
#
# masq LAN traffic
/sbin/iptables -t nat -A POSTROUTING -o $extint -j MASQUERADE
#
# redirect all LAN clients to the filtering port
#/sbin/iptables -t nat -A PREROUTING -i $intint -p tcp --dport 80 -j REDIRECT --to-port 3128
#/sbin/iptables -t nat -A PREROUTING -i eth0 -s USER -p tcp --dport 80 -j DNAT --to $intip:3128

#allow the proxy to be reached
iptables -A OUTPUT -o eth1 -s $extip -p tcp --dport 80 -j ACCEPT

# Allow the proxy server to get out
iptables -A OUTPUT -o eth1 -j ACCEPT

# Allow the proxy server to get out
iptables -A OUTPUT -o eth1 -j ACCEPT


#iptables -A INPUT -i eth0 -s $extip -p tcp -d $intint --dport 3128 -j ACCEPT


# Allow established and related packets back in:
iptables -A INPUT -i eth1 -m state --state ESTABLISHED,RELATED -j ACCEPT

iptables -A INPUT -p icmp --icmp-type echo-request -m limit --limit 1/s -i eth1 -j ACCEPT
#Forward ident port to Dell Inspiron
iptables -A PREROUTING -t nat -p tcp -i eth1 --dport 113 -j DNAT --to 192.168.0.4
#If all else fails
#iptables -A INPUT -p ALL -i eth0 -s 192.168.0.0/24 -j ACCEPT
Thanks in advance
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
IPCHAINS port forwarding and IPTABLES port forwarding ediestajr Linux - Networking 26 01-14-2007 07:35 PM
Problem with Port Forwarding Zorrocaesar Linux - Networking 1 10-25-2005 07:18 AM
Problem with Port forwarding :( aronnok Linux - Networking 2 04-06-2005 02:16 PM
port forwarding problem syrtsardo Linux - Networking 6 07-19-2004 01:50 AM
Ident Port mikeyt_333 Linux - Networking 0 11-23-2001 02:04 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 06:18 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration