[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [linux-team] redirection vers machine locale



pas besoin de rediriger explicitement le retour, les deux lignes indiquees
suffisent. Il te faut juste verifier que le traffic de retour n'est pas bloque
par une autre regle. Bien sur, ton serveur web a une default route qui pointe
vers la boite masquerade. Tu peux faire un tcpdump sur le serveur web pour voir
ou ca coince...

Sam

On 17-Oct-00 vincent.louviaux@belgacom.be wrote:
> ca a l air de marcher  ..
> mais 
> je pense qu il etablit bien une connection vers la bonne machine mais elle
> finit par un time out
> Ne faut il pas rediriger le retour ? 
> Comment monitorer exactement ce qui se passe ?
>  avec netstat sur les deux machines  (celle qui redirige et le web serveur )
> je ne vois rien
> 
> 
> 
> 
> 
> -----Original Message-----
> From: Francois Dessart [mailto:fdessart@swing.be]
> Sent: Tuesday 17 October 2000 10:48
> To: linux-team@rtfm.be; vincent.louviaux@belgacom.be
> Subject: RE: [linux-team] redirection vers machine locale
> 
> 
> Si tu utilises ipchains (kernel 2.2), il te faut le petit utilitaire
> "ipmasqadm"
> 
> Ensuite dans tes regles de ipchains tu mets:
> 
> /sbin/ipchains -I input -p tcp -y -s 0/0 -d 0/0 80 -m 1
> /usr/sbin/ipmasqadm mfw -I -m 1 -r 192.168.1.10 80
> 
> et voila. pour des explications sur les parametres, lis les man pages.
> 
> Francois. 
> 
> On 17-Oct-2000 vincent.louviaux@belgacom.be wrote:
>> Bonjour
>> 
>> j ai une petite machine qui fait du masquarade
>> et je voudrai que tout ce qui rentre sur le port 80 soit redirigé vers une
>> machine locale specific
>> Je penses qu il faut installer un software specifique (socks ?)
>> Pouvez vous me guider dans mes recherches ?
>> 
>> merci d'avance 
>> 
>> 
>> 
>> 
>> 
>> 
>>                   _________           ___________
>>    _/\__/\_      |         |         |           |
>>   |        |     |         |         | Postes de |
>>  / Internet \----| MASQ    |--(HUB)--|  travail  |
>>  \_  _  _  _/    |_________|    |    |192.168.1.5|
>>    \/ \/ \/                     |    |___________|
>>                                 |
>>                                 |     ____________
>>                                 |    |            |
>>                                 |----|  serveur   |
>>                                      |  web       |
>>                                      |192.168.1.10|
>>                                      |____________|
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> **** DISCLAIMER **** 
>> "This e-mail and any attachments thereto may contain information 
>> which is confidential and/or protected by intellectual property 
>> rights and are intended for the sole use of the recipient(s) named above. 
>> Any use of the information contained herein (including, but not limited
> to, 
>> total or partial reproduction, communication or distribution in any form) 
>> by persons other than the designated recipient(s) is prohibited. 
>> If you have received this e-mail in error, please notify the sender either
> 
>> by telephone or by e-mail and delete the material from any computer. 
>> Thank you for your cooperation."
>> 
>> --------
>> Visit the Linux Supertore Online: http://www.redcorp.com !
>> If you want to be deleted from the list, send a mail to
>> majordomo@rtfm.be with "unsubscribe linux-team" in the body.
> 
> ------------------------------------
> DESSART Francois
> <francois@linuxbe.org>
> ------------------------------------
> 
> 
> **** DISCLAIMER **** 
> "This e-mail and any attachments thereto may contain information 
> which is confidential and/or protected by intellectual property 
> rights and are intended for the sole use of the recipient(s) named above. 
> Any use of the information contained herein (including, but not limited to, 
> total or partial reproduction, communication or distribution in any form) 
> by persons other than the designated recipient(s) is prohibited. 
> If you have received this e-mail in error, please notify the sender either 
> by telephone or by e-mail and delete the material from any computer. 
> Thank you for your cooperation."
> 
> --------
> Visit the Linux Supertore Online: http://www.redcorp.com !
> If you want to be deleted from the list, send a mail to
> majordomo@rtfm.be with "unsubscribe linux-team" in the body.
> Archive of the list: http://tania.be.linux.org/

---
Samuel Grimee <sgrimee@cisco.com>
Security and Network services
Cisco Systems TAC, Europe
direct: +32 2 704 5441
---
Did you know you can update your case on http://cco.cisco.com ?
-> Technical Assistance Centre --> Tools --> Update a TAC case
--------
Visit the Linux Supertore Online: http://www.redcorp.com !
If you want to be deleted from the list, send a mail to
majordomo@rtfm.be with "unsubscribe linux-team" in the body.
Archive of the list: http://tania.be.linux.org/