[Bug 804] localhost port forwarding to a different host with DNAT

bugzilla-daemon at netfilter.org bugzilla-daemon at netfilter.org
Fri May 31 16:50:59 CEST 2013


https://bugzilla.netfilter.org/show_bug.cgi?id=804

Phil Oester <netfilter at linuxace.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEW                         |RESOLVED
                 CC|                            |netfilter at linuxace.com
         Resolution|                            |WONTFIX

--- Comment #1 from Phil Oester <netfilter at linuxace.com> 2013-05-31 16:50:58 CEST ---
You are correct that you cannot do this with the loopback interface, due to
special handling within Linux.  This is not a netfilter bug, just the way Linux
works.

However, what you want to achieve is trivially done simply by using an unused
RFC 1918 address.  One example:

iptables -t nat -A OUTPUT -d 10.10.10.10 -p tcp --dport 3306 \
     -j DNAT --to real_mysql_server:3306

Then all your localhost processes would connect to 10.10.10.10:3306 instead of
localhost:3306.  

Closing.

-- 
Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.



More information about the netfilter-buglog mailing list