Larry, I corrected the typo, but I still get this error:
iptables v1.2.6a: Unknown arg `--to' Try `iptables -h' or 'iptables --help' for more information. Thanks for your help. Ralph -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Larry Brown Sent: Saturday, March 22, 2003 4:08 PM To: [EMAIL PROTECTED] Subject: RE: IPTABLES Routing You must have missed my last e-mail. You have a typo.. $IPTABLES -A PREROUTING -t nat -p TCP -d <external IP address> --dport 2000 -j dnat -t 10.200.200.10:23 the -t is supposed to be --to $IPTABLES -A PREROUTING -t nat -p TCP -d <external IP address> --dport 2000 -j dnat --to 10.200.200.10:23 Larry S. Brown Dimension Networks, Inc. (727) 723-8388 -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Ralph Guzman Sent: Saturday, March 22, 2003 6:56 PM To: [EMAIL PROTECTED] Subject: RE: IPTABLES Routing Larry I followed your instructions. I added the following to my rc.firewall script: $IPTABLES -A PREROUTING -t nat -p TCP -d <external IP address> --dport 2000 -j dnat -t 10.200.200.10:23 $IPTABLES -A FORWARD -i eth0 -p tcp --dport 2000 -j ACCEPT But now I get the following error: iptables v1.2.6a: can't initialize iptables table `10.200.200.10:23': Table does not exist (do you need to insmod?) Perhaps iptables or your kernel needs to be upgraded. Do I have to upgrade my kernel as instructed? Thanks again. -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Larry Brown Sent: Saturday, March 22, 2003 12:39 AM To: [EMAIL PROTECTED] Subject: RE: IPTABLES Routing Are you sure you want clear text passwords being passed across the internet? You would be served much better using ssh instead. Whichever you choose, you can do either with iptables. iptables -A prerouting -t nat -p TCP -d <external static IP address> --dport <port you want routed to the internal SCO box> -j dnat --to <IP address of the SCO box>:<port number you want the port that is being forwarded to arrive on at the SCO box> ex: iptables -A prerouting -t nat -p TCP -d 213.23.45.2 --dport 22 -j dnat --to 192.168.0.5:22 if you want this to be port 10000 on the firewall then you can do--dport 10000 and -to 192.168.0.5:22 You will then need a line for the port as follows: iptables -A FORWARD -i eth<number of the external ethernet card> -p tcp --dport <port number on firewall> -j ACCEPT ex: iptables -A FORWARD -i eth0 -p tcp --dport 10000 -j ACCEPT Again, I would strongly discourage using telnet across the Internet. Larry S. Brown Dimension Networks, Inc. (727) 723-8388 -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Ralph Guzman Sent: Saturday, March 22, 2003 3:06 AM To: [EMAIL PROTECTED] Subject: IPTABLES Routing Here is my situation: I have a Redhat 8.0 server setup as a DSL gateway/firewall using 2 network cards. One NIC for the internal IP and other with the public IP. We have a SCO server that we telnet to from our internal network. This server is setup with a modem for when we want to connect to it from a remote location. But now we would like to connect to it remotely through the Internet. So my question is, can our Redhat 8.0 server be setup so that we can telnet into it, then have it redirect incoming telnet connection to the SCO server on our private network? Is this possible, or must I also setup the SCO server with it's own public IP address? Can this be done with IPTABLES or other, if so how can I go about doing this? Your help is appreciated. -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
