NetFilter
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: DNAT not working

from [Grant Taylor] [Permanent Link][Original]
To: Mail List - Netfilter <netfilter@lists.netfilter.org>
Subject: Re: DNAT not working
From: Grant Taylor <gtaylor@riverviewtech.net>
Date: Fri, 22 Dec 2006 14:38:44 -0600
Delivered-to: sp-com-lists@consult.net
Delivered-to: netfilter-list1@securepoint.com
In-reply-to: <458BF3C2.4050700@initon.com>
List-archive: </pipermail/netfilter>
List-help: <mailto:netfilter-request@lists.netfilter.org?subject=help>
List-id: General discussion and user questions <netfilter.lists.netfilter.org>
List-post: <mailto:netfilter@lists.netfilter.org>
List-subscribe: <https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=subscribe>
List-unsubscribe: <https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=unsubscribe>
References: <458BF3C2.4050700@initon.com>
Sender: netfilter-bounces@lists.netfilter.org
User-agent: Thunderbird 1.5.0.9 (X11/20061206) 
Balazs Fulop wrote:

# Generated by iptables-save v1.3.5 on Fri Dec 22 14:23:36 2006
*nat
:PREROUTING ACCEPT [58:10171]
:POSTROUTING ACCEPT [13:1459]
:OUTPUT ACCEPT [13:1459]
-A PREROUTING -d aaa.bbb.ccc.fff -i eth0 -p tcp -m tcp --dport 25 -j DNAT --to-destination 192.168.3.1 
-A PREROUTING -j LOG --log-prefix "PREROUTING: " --log-level 7
COMMIT


<snip>
If I telnet 192.168.3.1 25 on the firewall, an SMTP session starts. If I telnet from outside (coming on eth0), it waits until timeout. I just can't figure out why it is not working. At last I removed all the IP aliases, and it didn't work that way either. There is nothing relevant in /var/log/syslog. I have 1 in /proc/sys/net/ipv4/ip_forward.
It does not look like you are SNATing / MASQUERADing your traffic back out to the internet. 



Grant. . . .
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Dropping Connections, jwlargent
Next by Date:  Re: DNAT not working, Pascal Hambourg
Previous by Thread:  DNAT not working, Balazs Fulop
Next by Thread:  Re: DNAT not working, Pascal Hambourg
Indexes:  [Date] [Thread] [Top] [All Lists]