Port Forwarding / Triggering / Knocking with iptables / debian
Hello
I am using a debian wheezy with iptables.
I'd like to have either:
- port triggering / knocking (if I understood correctly). Ie, I try to access a given port from an IP, and this request will open for this IP another port for a given time. I couldnt find anything about this on iptables
or
- port forwarding: I've found the classic
-A PREROUTING -i eth0 -p tcp -m tcp --dport 8010 -j REDIRECT --to-ports 80
which will redirect port 8010 to 80, but I'd like that port 80 remains prohibited for everybody (or at least, any external IP) - the idea is to hide the port from scanners (I have other security after that, I know hiding is not enough)
How could I achieve this ?
Thks for the help
J
Last edited by cerien; 01-10-2014 at 01:48 PM.
|