Hi folks,
desperately I try to configure a SUSE 9.3 machine as gateway and proxy
from the outside world to an internal http Windows server using
NAT-Masquerading. The opposite direction functions well, I can connect
with all pc's and servers to the internet and the public IP's are
masqueraded. But I need to route from the outside world let's say
295.176.186.193:8090 -> 10.1.1.64:80. I configured like this using
YAST-Masquerading. Nevertheless it doesn't work, calling
295.176.186.193:8090 from outside results in the error CONNECTION
REFUSED WHEN ATTEMPTING TO CONTACT 295.176.186.193.
Here some infos:
netstat -rn
Kernel IP routing table
Destination Gateway Genmask Flags MSS Window
irtt Iface
295.176.186.192 0.0.0.0 255.255.255.224 U 0 0
0 eth1
10.1.1.0 0.0.0.0 255.255.255.0 U 0 0
0 eth0
169.254.0.0 0.0.0.0 255.255.0.0 U 0 0
0 eth0
127.0.0.0 0.0.0.0 255.0.0.0 U 0 0
0 lo
0.0.0.0 295.176.186.193 0.0.0.0 UG 0 0
0 eth1
route
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use
Iface
295.176.186.192 * 255.255.255.224 U 0 0 0
eth1
10.1.1.0 * 255.255.255.0 U 0 0 0
eth0
link-local * 255.255.0.0 U 0 0 0
eth0
loopback * 255.0.0.0 U 0 0 0
lo
default gwe-e0 0.0.0.0 UG 0 0 0
eth1
iptables -t nat -L
Chain PREROUTING (policy ACCEPT)
target prot opt source destination
DNAT tcp -- 295.176.186.192/27 gw.intranet.unimi.it tcp
dpt:http to:10.1.1.124:80
DNAT tcp -- anywhere gw.intranet.unimi.it tcp
dpt:hosts2-ns to:10.1.1.125:81
Chain POSTROUTING (policy ACCEPT)
target prot opt source destination
MASQUERADE all -- anywhere anywhere
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Any idea what's wrong ??
Thanx a lot....
|
Similar Threads
Linear Mode
