Help Redirect
Antony Stone
Antony@Soft-Solutions.co.uk
Wed, 6 Nov 2002 17:44:57 +0000
On Wednesday 06 November 2002 4:34 pm, Linux User wrote:
> Hi friends,
>
> My consultation is the following one:
>
> What rules (IPTABLES) in firewall I can apply so that all the requirement
> of the internal network to port 80 is redirected to an external Squid Proxy
> server (3128) .
>
> Firewall:
> Eth0 (External): 192.168.100.1
> Eth1 (Internal): 172.16.100.1
>
> Squid Proxy Server:
> Eth0 : 192.168.100.100
iptables -A PREROUTING -t nat -i eth1 -p tcp --dport 80 -j DNAT --to
192.168.100.100:3128
iptables -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -A FORWARD -i eth1 -p tcp --dport 3128 -d 192.168.100.100 -j ACCEPT
Antony.
--
Anything that improbable is effectively impossible.
- Murray Gell-Mann, Nobel Prizewinner in Physics