On Friday 05 September 2003 02:01, Oded Arbel wrote:
> On Thursday 04 September 2003 17:32, David Harel wrote:
> > The way CounterStrike uses a proxy machine require mapping of ports like:
> > "New TCP Service, name it "Half-Life Auth Server". Accept connections on
> > port 7002. Enable default mapping to half-life.east.won.net on port 7002
> > (or half-life.west.won.net on port 7002)"
> > which, on MS windows machines is done using wingate.
> > Is there an equivalent tool to setup such mapping on Linux?
>
> You can do it easily by using xinetd or some other software to listen on
> the required ports on your linux machine and redirect them to the windows
> machine. while its possible to do this in the firewall (iptables/ipchains)
> I wouldn't recommend it as its a pain to manage.
There are advantages to port forwarding via the NAT (iptables/ipchains) over
port forwarding by an external program -- it gives you transparency and the
program/game thinks its talking to the original server.
Forwarding ports with iptables is easy -- you create a DNAT (destination NAT)
rule:
iptables -t nat -A PREROUTING -p tcp --dport 7002 \
-j DNAT --to 10.0.0.2:7002
(assuming 10.0.0.2 is the Windows box)
See
http://www.netfilter.org/documentation/HOWTO//NAT-HOWTO-6.html#ss6.2
=================================================================
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]
