[H-GEN] Iptables DNAT and SNAT
Conor Cunningham
cunningtek at optusnet.com.au
Tue Oct 24 03:38:59 EDT 2006
Thanks Res,
I do believe however, that our commands are much of a muchness - by
default according to the IP tables docs, if you do not include a
destination port number, it uses the incoming port number specified with
the --dport option.
I did forget to mention in my previous mail, that the backend and front
end machines are on different networks, and the load balancer is the
gateway/router between. Do you think that this would be interferring
with my plans?
Cheers Res,
Conor
Res wrote:
> On Mon, 23 Oct 2006, Conor Cunningham wrote:
>
>>
>> iptables -t nat -I PREROUTING -p tcp --dport 3717 -j DNAT
>> --to-destination 192.168.2.181
>>
>> 192.168.2.181 (being the back end VIP)
>>
>> Currently I can not see any traffic getting to the back end machine,
>> but I'm
>
>
>
> iptables -t nat -A PREROUTING -p tcp --dport 3717 -j DNAT --to
> 192.168.2.181:3717
>
>
More information about the General
mailing list