[CentOS] A little iptables help
Kirk Bocek
t004 at kbocek.com
Wed Sep 28 18:20:24 UTC 2005
James Pifer wrote:
> I can't make 10.10.60.3 use 10.10.60.4 as the router.
I might be wrong about needing to use 10.10.60.3 for the return traffic. The DNAT
function on 10.10.60.3 won't change the source IP address. As long a 10.10.60.4 has a
route to the first network, this should still work.
> If I loaded a port forwarding application on 10.10.60.3 and had it
> forward ports to .4 for port 5900 I would not have this requirement.
>
> Can't iptables to the same thing somehow?
You lost me here. Iptables *is* our 'port forwarding application' on 10.10.60.3.
The rule I wrote would accept traffic going to 10.10.60.3:5900 and send it back out
to 10.10.60.4:5900.
More information about the CentOS
mailing list