[lug] iptables help
Dan Ferris
dan at usrsbin.com
Sat Oct 20 22:59:51 MDT 2012
Does anyone know offhand why in the name of holy khutulu something this
simple won't just work:
iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 443 -j DNAT --to
127.0.0.1:4443
ip_forward is turned on. I even added a route in the routing table:
route -n
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
0.0.0.0 192.168.108.1 0.0.0.0 UG 100 0 0 eth0
127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo
192.168.108.0 0.0.0.0 255.255.252.0 U 0 0 0 eth0
No firewall rules at all:
Chain INPUT (policy ACCEPT 75M packets, 5387M bytes)
pkts bytes target prot opt in out source destination
Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
Chain OUTPUT (policy ACCEPT 72M packets, 55G bytes)
pkts bytes target prot opt in out source destination
Yet no matter what I do, the process listening on lo never sees any of
the redirected traffic.
It's so irritating something so stupidly easy isn't working. Not to
mention I feel like an idiot.
If anyone has some brilliant ideas, I'm open to suggestions.
Dan
More information about the LUG
mailing list