LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Security (http://www.linuxquestions.org/questions/linux-security-4/)
-   -   question about iptables (DMZ machine connect to other DMZ machine 's publuic IP) (http://www.linuxquestions.org/questions/linux-security-4/question-about-iptables-dmz-machine-connect-to-other-dmz-machine-s-publuic-ip-520391/)

wingmak 01-18-2007 01:25 AM

question about iptables (DMZ machine connect to other DMZ machine 's publuic IP)
 
hi all,

i am using iptables to be a firewall for my company,

for example:
ext_ip_1: 111.111.111.1
ext_ip_2: 111.111.111.2

dmz_ip_1: 192.168.0.1:www ( mapping to 111.111.111.1:www )
dmz_ip_2: 192.168.0.2:ftp ( mapping to 111.111.111.2:ftp )

when i try to connect to the Wan IP of 111.111.111.1 from 192.168.0.2,
it show me an error message about "Connection refused"

how can i setup a rule to connect to DMZ machine 111.111.111.1:www from machine 192.168.0.2 ??
and connect to DMZ machine 111.111.111.2:ftp from machine 192.168.0.1

thanks !

wingmak

Brian1 01-20-2007 04:01 PM

I can't find the post I am looking for but what should work is DNAT. Check out the links in the post by Capt_Caveman. http://www.linuxquestions.org/questi...highlight=dnat

Search here for dnat and there are several examples.

Brian


All times are GMT -5. The time now is 10:32 PM.