Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
please any one can ?
this is urgent for me cause i want someone external to connect to oracle on my lan where i use two network card one for ext and other for internal and using NAT between them and want the one to access orcal port on PC 192.168.1.12 which is internal ,, how to do that ???
The process, with iptables, is called port forwarding. Be very careful with this as the port becomes freely available from the internet to anyone who scans your network. Make sure your application / service on the inside is well patched and protected.
this command will allow eevryone to get access on my lan but i want a specific address ip to have the access
or if you can give me a better solution will be appreciated :
i have eth0 : internet 172.x.x.x
eth1 : LAN 10.x.x.x
and i want one in the exterieur to get acces on telnet and oracle port at the address 10.10.5.3
I'm confused...The command I gave you gives access to anyone from the outside to your internal address on your oracle port and telnet assuming the machine you run these commands is the machine facing the internet:
i want only one address that has the access not EVERYONE only one address for example i want the one who has address 215.256.12.136 can access on port http for my lan(192.168.1.1) through ethenet 1 (172.151.73.112)
thank you,
i'll give you details information (this is so so urgent for me am working)
i have two network cards one for external other for internal(192.168.1.208:6668/forms/frmservlet) which i want to access and telnet it from exteranl when i type http://myaddress.
http://myaddress this ROUT me to 192.168.1.208:6668/forms/frmservlet
and when telnet my address ROUTE me to 192.168.1.208
iptables -t nat -A PREROUTING -i <your incoming net interface (eth0?)> -p tcp -m tcp --dport <your oracle port> -j DNAT --to-destination 192.168.1.12:<your oracle port>
this command i did it but it didnt work !!!
iptables -t nat -A PREROUTING -i <your incoming net interface (eth0?)> -p tcp -m tcp --dport <your oracle port> -j DNAT --to-destination 192.168.1.12:<your oracle port>
this command i did it but it didnt work !!!
Can you please post the outcome of the command when you run it in a shell ?
thank you all, the problem solved if anyone want to see how just post me a question, i dont have access now to the server , i'll put the commands later...
thank you all
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.