[Sussex] ipChains help please

Derek Harding derek at lagham.uklinux.net
Thu Feb 27 19:20:01 UTC 2003


Hi Guys,

Once again I haven't been able to get to the meeting! Can someone help please.

Gateway/firewall box running SuSE 7.1 with kernel 2.2.x and the "old" masquerade modules, all OK as a gateway (the smtp/pop3 server is in the DMZ and is masqueraded to - so to speak) with eth0 (10.18.203.1) pointing in and eth1 (10.18.200.1) pointing to the DMZ/Internet. Therefore default ipchains (deny everything and use the masquerade and squid) is configured.

Problem, webserver (10.18.203.69) inside the firewall. The ISP is redirecting external www requests to eth1 on port 8080. What rules do I need to get from 10.18.200.1:8080 to the inside box on 10.18.203.69:8080 (and back out!)? The kernel on the firewall is compiled correctly and forwarding is enabled.

--
Best wishes,
Derek




More information about the Sussex mailing list