[CentOS] iptables question

Fri Feb 20 01:22:10 UTC 2009
Barry Brimer <lists at brimer.org>

On Thu, 19 Feb 2009 Ward.P.Fontenot at wellsfargo.com wrote:

> I add that and telnet to the port on BOX A and get
>
> Trying 192.168.0.1...
> telnet: connect to address 192.168.0.1: Connection refused
>
> I can telnet to that port on BOX B and get a successful connection.


I assume that you are not telnetting from Box A .. as that will most 
likely not work.  Are there any additional firewall rules on Box A?

Barry


> -----Original Message-----
> From: centos-bounces at centos.org [mailto:centos-bounces at centos.org] On
> Behalf Of Barry Brimer
> Sent: Thursday, February 19, 2009 5:38 PM
> To: CentOS mailing list
> Subject: Re: [CentOS] iptables question
>
>
>
> On Thu, 19 Feb 2009 Ward.P.Fontenot at wellsfargo.com wrote:
>
>> Hi,
>>
>> I have two servers in the same subnet, one has this arrangement:
>>
>> BOX A [3 ips, one real two vips]
>>
>> BOX B [1 ip]
>>
>> I need to redirect input from one of the vips (192.168.0.1:8080) on
> BOX
>> A to BOX B (192.168.0.2:8080) and I'm about to pull my hair out. Can
>> anyone lend a hand? All my searching leads me to home firewall type
>> arrangements using DNAT. I tried to bend one of those to fit my
>> situation but it was a no go (most likely due to my lack of knowledge
>> with iptables)
>
> iptables -t nat -I PREROUTING -d 192.168.0.1 -p tcp --dport 8080 -j DNAT
> --to 192.168.0.2