[Shorewall-users] port forwarding

Tom Eastep teastep@shorewall.net
Thu, 4 Jul 2002 10:58:49 -0700 (PDT)


On Thu, 4 Jul 2002, Rikard Florin wrote:

> Hello,
> 
> I'm wondering what the proper way to forward one port to another server and
> another port is.
> 
> I'm using Shorewall 1.2.12 (due to Debian Woody packaging), I have a local
> computer on 192.168.0.2 and I want access to port 8080 in the firewall to be
> redirected to this local computer on port 80.
> 

That is FAQ #1 - http://www.shorewall.net/1.2/FAQ.htm#faq1

With version 1.2.12, the proper rule is:

ACCEPT	net	loc:192.168.0.2:80	tcp	8080	-	all

With version 1.3.*, the rule becomes:

DNAT	net	loc:192.168.0.2:80	tcp	8080

although the 1.2.* syntax is still accepted.

-Tom
-- 
Tom Eastep    \ Shorewall - iptables made easy
AIM: tmeastep  \ http://www.shorewall.net
ICQ: #60745924  \ teastep@shorewall.net