LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices


Reply
  Search this Thread
Old 01-17-2011, 11:06 AM   #16
rhoekstra
Member
 
Registered: Aug 2004
Location: The Netherlands
Distribution: RedHat 2, 3, 4, 5, Fedora, SuSE, Gentoo
Posts: 372

Rep: Reputation: 42

Quote:
Originally Posted by stress_junkie View Post
Addresses starting with 172 are not private. If these machines are not connected to the Internet then I guess there is no harm.
172.16.0.0/12 is private, to be precise
 
Old 01-18-2011, 01:48 AM   #17
rhoekstra
Member
 
Registered: Aug 2004
Location: The Netherlands
Distribution: RedHat 2, 3, 4, 5, Fedora, SuSE, Gentoo
Posts: 372

Rep: Reputation: 42
Quote:
Originally Posted by Stressik View Post
iptables -I FORWARD -p tcp --dport 723 -i eth1 -o eth1 -j ACCEPT
iptables -t nat -I OUTPUT -p tcp --dport 81 -d <ip_zew> -j DNAT --to-destination 192.168.25.3:80
iptables -t nat -I OUTPUT -p tcp --dport 723 -d <ip_zew> -j DNAT --to-destination 192.168.25.3:723
Also, I think your putty connection refused has to do with the port 723 not being forwarded to the mentioned host, assuming that the putty client on win7 is connected to eth0, not eth1. the above iptables line should be duplicated and adapted to forward traffic from eth0 to eth1, port 723. like this

Code:
iptables -I FORWARD -p tcp --dport 723 -i eth0 -o eth1 -j ACCEPT
Looking deeper into your lines.. I think the following is not right:

Code:
iptables -t nat -I OUTPUT -p tcp --dport 81 -d <ip_zew> -j DNAT --to-destination 192.168.25.3:80
iptables -t nat -I OUTPUT -p tcp --dport 723 -d <ip_zew> -j DNAT --to-destination 192.168.25.3:723
OUTPUT chains don't normally have DNAT entries, but SNAT instead. You should try putting these lines in the PREROUTING chain (you change the destination, so the routing decision will have to decide on the altered destination, hence the PREROUTING table.
 
Old 05-02-2011, 02:04 AM   #18
h.haider
LQ Newbie
 
Registered: Apr 2011
Location: Pakistan
Distribution: Centos, Fedora, Redhat, ubuntu, debian
Posts: 18

Rep: Reputation: 0
Quote:
Originally Posted by stress_junkie View Post
Addresses starting with 172 are not private. If these machines are not connected to the Internet then I guess there is no harm.

Visit This link its works for me 100%


http://freelinuxtutorial.blogspot.co...ind-squid.html

Last edited by h.haider; 05-02-2011 at 02:08 AM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Apache And Iptables - Help Please Richtown Linux - Newbie 1 04-28-2006 07:32 PM
iptables for apache bobbens Debian 6 03-11-2005 10:21 AM
New Quiz - vi jeremy Programming 5 11-26-2003 11:39 AM
New Quiz - Apache jeremy Linux - General 3 11-19-2003 12:28 PM
quiz nautilus_1987 LQ Suggestions & Feedback 12 09-21-2002 10:35 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Server

All times are GMT -5. The time now is 11:15 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration