[ale] port forwarding for iptables.
JK
jknapka at kneuro.net
Tue Jun 9 13:42:14 EDT 2009
Jim Kinney wrote:
> all of the -j LOG calls will never trigger because the packet has
> already left the chain due to the line before it with the -j ACCEPT or
> -j DNAT. Put the log before the jump call.
>
> -j REDIRECT is what you want to use. DNAT is for IP address. REDIRECT
> is for port forwarding.
If I am not mistaken, REDIRECT only allows you to forward to a port on
the local machine. If you want to forward on to another machine, you
need DNAT. "man iptables" backs me up on this, yay.
-- JK
--
Still sigless.
More information about the Ale
mailing list