Fedora This forum is for the discussion of the Fedora Project. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
02-25-2008, 08:34 PM
|
#1
|
Member
Registered: Oct 2007
Posts: 33
Rep:
|
Forwarding ports.
Hi,
there is this sserver I might have to take care of in the next days, Iīve checked it briefly and could not find where port forwardring rules are being defined? (they are not in iptablesī conf. for instance)
I dont believe Squid has such forwarding-incoming-connections functionality, does it?
The remote assistance connections are coming through the VPN... may that be reason they donīt need their ports being redirected ?
This is a Fedora 5 server acting as a router, running iptables, squid and SElinux, with an ASDL connection.
It does not have any X server or apps, so I basically checked the conf files I am aware of.
Thanks in advance.
|
|
|
02-27-2008, 05:11 AM
|
#2
|
Moderator
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417
|
well it ould depend on what you are really referring to, but this would generally be nothing at all to do with squid. it would have to be iptables, but there are many places you could put iptables config if you wanted to. if you do an "iptables -L" are they shown there?
|
|
|
02-27-2008, 05:41 AM
|
#3
|
LQ Newbie
Registered: May 2007
Posts: 21
Rep:
|
It can be done using the iptables. You can type it in command prompt and give /etc/init.d/iptables save to make the settings permanent.
The below example will redirect the request from 80(httpd) to the 8080(tomcat) internel. To the outer world it will look as if it was running from 80.
iptables -t nat -A OUTPUT -d localhost -p tcp --dport 80 -j REDIRECT --to-ports 8080
iptables -t nat -A OUTPUT -d your hostname -p tcp --dport 80 -j REDIRECT --to-ports 8080
iptables -t nat -A PREROUTING -d your hostname -p tcp --dport 80 -j REDIRECT --to-ports 8080
|
|
|
02-28-2008, 02:23 PM
|
#4
|
Member
Registered: Oct 2007
Posts: 33
Original Poster
Rep:
|
Hi, thanks for your input.
yeah, I know the usual way to do this kind of thing, but in this case I was wondering if it could have been set-up in some other way.
That -L option seems to be what I need to see if there are other rules I didnīt find.
BTW, let me ask you again if a remote site connected through some VPN *could* initiate connections to listenning services in the LANīs PCs without ports being explicitely redirected from the router to the PCs.
Regards.
|
|
|
All times are GMT -5. The time now is 08:42 AM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|