Latest LQ Deal: Linux Power User Bundle
Go Back > Forums > Linux Forums > Linux - Networking
User Name
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.


  Search this Thread
Old 01-05-2009, 12:20 AM   #1
LQ Newbie
Registered: Nov 2008
Posts: 9

Rep: Reputation: Disabled
IPTables Help - Forwarding from one port to another

I am running Ubuntu 8.04, and how I want it is so that if any computer connects to the server on 10.20.117.x:445 it will forward it to using <Server's IP> which is a public interface.

Any thoughts/ideas?

iptables -t nat -A PREROUTING  -p tcp -d 10.20.117.x --destination-port 465 -j DNAT --to-destination
iptables -t nat -A POSTROUTING -p tcp --dst --dport 465 -j SNAT --to-source <Server's IP>
iptables -A FORWARD -p tcp -d --dport 465 -j ACCEPT
Old 01-05-2009, 08:52 AM   #2
Senior Member
Registered: Mar 2006
Posts: 1,896

Rep: Reputation: 61
With a couple of changes (highlighted in bold below) to you first rule, I think that should work assuming that your routing table directs a destination of out the interface you wish:

iptables -t nat -A PREROUTING  -p tcp -d --destination-port 445 -j DNAT --to-destination
If you wish you can make your second rule more general where it will SNAT all LAN packets going out the public interface. In most cases this is what you would want:

PUBLIC_IF=<public interface, e.g. eth1>
PUBLIC_IP=<Server's IP>

iptables -t nat -A POSTROUTING -s $LAN_IP -o $PUBLIC_IF -j SNAT --to-source $PUBLIC_IP
Adjust $LAN_IP, $PUBLIC_IF and $PUBLIC_IP as needed.

If you are unfamiliar with CIDR notation, you can read about it here. In a nutshell (quoting from the linked page):

In CIDR notation, the number of 1.s in the binary version of the mask are counted from the left, and that number is appended to the end of the base address following a slash (/). In the example here the subnet would be listed in CIDR notation as
Old 01-06-2009, 12:07 AM   #3
LQ Newbie
Registered: Nov 2008
Posts: 9

Original Poster
Rep: Reputation: Disabled


firewall, forwarding, iptables, port, route

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
IPCHAINS port forwarding and IPTABLES port forwarding ediestajr Linux - Networking 26 01-14-2007 08:35 PM
iptables - port forwarding satimis Linux - Networking 22 12-04-2006 10:44 AM
IpTables forwarding port 25 danrfxz Linux - Networking 1 11-27-2006 01:05 PM
iptables - port forwarding midiguy732 Linux - Networking 1 11-24-2005 02:40 AM
IPTables port forwarding.. NeoTech Linux - Networking 2 01-03-2005 12:27 PM > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 04:47 PM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration