Hi,
I am not familiar with running a DNS server and I was unable to access your picture. But since nobody else has responded to this thread I thought I might see if I could help you some anyway.
My first question is whether site.intranet resolves to 10.10.0.10. (I don't have the knowledge to interpret your DNS config file -- sorry.) If so, then if nothing else in your firewall is blocking it, an ftp request to that address should redirect. You can use the command
Code:
iptables -t nat -nvL PREROUTING
to check if anything is matching that rule. The first column will show you the number of packets that have matched, and therefore been redirected. That will take care of the first packet in a connection. However, for the rest of the connection to continue getting DNATted properly, I
think you need to have loaded the module
ip_conntrack_ftp:
Code:
modprobe ip_conntrack_ftp
I hope this gets you a little further