[CentOS] A little iptables help

Wed Sep 28 18:35:39 UTC 2005
James Pifer <jep at obrien-pifer.com>

On Wed, 2005-09-28 at 11:20 -0700, Kirk Bocek wrote:
> 
> James Pifer wrote:
> 
> > I can't make 10.10.60.3 use 10.10.60.4 as the router. 
> 
> I might be wrong about needing to use 10.10.60.3 for the return traffic. The DNAT 
> function on 10.10.60.3 won't change the source IP address. As long a 10.10.60.4 has a 
> route to the first network, this should still work.
> 
> 
> > If I loaded a port forwarding application on 10.10.60.3 and had it
> > forward ports to .4 for port 5900 I would not have this requirement. 
> > 
> > Can't iptables to the same thing somehow?
> 
> You lost me here. Iptables *is* our 'port forwarding application' on 10.10.60.3.
> The rule I wrote would accept traffic going to 10.10.60.3:5900 and send it back out 
> to 10.10.60.4:5900.

Okay, doesn't seem to be doing it. I must be doing something wrong. I'll
play with it more this evening. 

Thanks,
James