Linux - Server This forum is for the discussion of Linux Software used in a server related context. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
08-05-2009, 10:57 AM
|
#1
|
Senior Member
Registered: Jul 2009
Location: UK
Distribution: Cent OS5 with Plesk
Posts: 1,013
Rep:
|
If I forward a port in iptables, does the port have to be open on the firewall?
If I forward port 80 to port 3128 for squid with an iptable rule, does port 3128 have to be open on the firewall or is this all routed behind the firewall?
|
|
|
08-05-2009, 02:26 PM
|
#2
|
Member
Registered: Jul 2008
Location: Bloomington, IN
Distribution: Ubuntu/Debian
Posts: 51
Rep:
|
iptables IS the firewall for Linux, or at least the front-end for netfilter of which is the firewall for Linux. Are you meaning an external firewall perhaps?
|
|
|
08-05-2009, 03:12 PM
|
#3
|
Senior Member
Registered: Jun 2008
Location: Eelam
Distribution: Redhat, Solaris, Suse
Posts: 1,278
Rep:
|
You will have to accept port 3128 at your INPUT table, In iptable prerouting is happening first.
http://www.docum.org/docum.org/kptd/
|
|
|
08-05-2009, 05:41 PM
|
#4
|
Senior Member
Registered: Jul 2009
Location: UK
Distribution: Cent OS5 with Plesk
Posts: 1,013
Original Poster
Rep:
|
Quote:
Originally Posted by PresGas
iptables IS the firewall for Linux, or at least the front-end for netfilter of which is the firewall for Linux. Are you meaning an external firewall perhaps?
|
Yes, there is an external hardware firewall on my box or on the network held by the host, which presumably picks up the IP and associated rules. So, a http request would come in on port 80.
To forward it, do I need to open the external firewall as well as forward it in iptables?
The external firewall has no forwarding facility in this case so it has to be done through iptables.
|
|
|
08-06-2009, 10:22 AM
|
#5
|
Member
Registered: Jul 2008
Location: Bloomington, IN
Distribution: Ubuntu/Debian
Posts: 51
Rep:
|
If I am understanding you correctly, squid is also on the server. If that is the case, I believe you would only need to open up 80 on the outside firewall, as everything else would be done at the server.
|
|
|
All times are GMT -5. The time now is 03:06 AM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|