Difference between revisions of "IPtable Forward Port"

From MS Computech
Jump to: navigation, search
Line 1: Line 1:
 
==== This is sample rule to forward rdp to host.  LinixGateway-->>Windows Server2003  ====
 
==== This is sample rule to forward rdp to host.  LinixGateway-->>Windows Server2003  ====
  
====== ================================================== ======
+
====== ================================================== ======
 
+
<pre>#echo 1 &gt; /proc/sys/net/ipv4/ip_forward
Forward rule Listen port 3000 forward to 3389
+
</pre>  
<pre>echo 1 &gt; /proc/sys/net/ipv4/ip_forward</pre>
+
Forward rule Listen port 3000 forward to 3389&nbsp;<br>  
Forward to 2003 RDP And Nat<br>
+
<pre>#/sbin/iptables -A FORWARD -i eth0 -o eth1 -p tcp --dport 3000 -m state --state NEW,ESTABLISHED,RELATED -j ACCEPT
<pre>sbin/iptables -A FORWARD -i eth0 -o eth1 -p tcp --dport 3000 -m state --state NEW,ESTABLISHED,RELATED -j ACCEPT&lt;br&gt;/sbin/iptables -A PREROUTING -t nat -p tcp -i eth0 --dport 3000 -j DNAT --to-destination 172.31.255.2:3389</pre>
+
#/sbin/iptables -A PREROUTING -t nat -p tcp -i eth0 --dport 3000 -j DNAT --to-destination 172.31.255.2:3389</pre>  
<br>WWW Fileshare<br>
+
WWW Fileshare<br>  
<pre>/sbin/iptables -A FORWARD -i eth0 -o eth1 -p tcp --dport 8000 -m state --state NEW,ESTABLISHED,RELATED -j ACCEPT&lt;br&gt;/sbin/iptables -A PREROUTING -t nat -p tcp -i eth0 --dport 8000 -j DNAT --to-destination 172.31.255.2:8000</pre>
+
<pre>#/sbin/iptables -A FORWARD -i eth0 -o eth1 -p tcp --dport 8000 -m state --state NEW,ESTABLISHED,RELATED -j ACCEPT
<br>
+
#/sbin/iptables -A PREROUTING -t nat -p tcp -i eth0 --dport 8000 -j DNAT --to-destination 172.31.255.2:8000</pre> <pre>#/sbin/iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE</pre>
<pre>/sbin/iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE</pre>
 

Revision as of 13:18, 6 December 2008

This is sample rule to forward rdp to host.  LinixGateway-->>Windows Server2003

==================================================
#echo 1 > /proc/sys/net/ipv4/ip_forward

Forward rule Listen port 3000 forward to 3389 

#/sbin/iptables -A FORWARD -i eth0 -o eth1 -p tcp --dport 3000 -m state --state NEW,ESTABLISHED,RELATED -j ACCEPT
#/sbin/iptables -A PREROUTING -t nat -p tcp -i eth0 --dport 3000 -j DNAT --to-destination 172.31.255.2:3389

WWW Fileshare

#/sbin/iptables -A FORWARD -i eth0 -o eth1 -p tcp --dport 8000 -m state --state NEW,ESTABLISHED,RELATED -j ACCEPT
#/sbin/iptables -A PREROUTING -t nat -p tcp -i eth0 --dport 8000 -j DNAT --to-destination 172.31.255.2:8000
#/sbin/iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
Retrieved from "https://msc.siamtools.com/wiki/index.php?title=IPtable_Forward_Port&oldid=303"