Iptables: forward request on different interfaces and port

前端 未结 1 1571
无人共我
无人共我 2021-02-04 20:43

I have a machine with 2 interfaces:

eth0      inet addr:1.1.1.1
eth1      inet addr:2.2.2.2

eth0 is a server, eth1 is the network on virtual ma

1条回答
  •  轻奢々
    轻奢々 (楼主)
    2021-02-04 21:25

    Well there are like 1 million scripts/tutorials/things for this case, but if someone lands from google to here is something like this:

    iptables -I FORWARD -d 2.2.2.2 -m comment --comment "Accept to forward ssh traffic" -m tcp -p tcp --dport 22 -j ACCEPT    
    iptables -I FORWARD -m comment --comment "Accept to forward ssh return traffic" -s 2.2.2.2 -m tcp -p tcp --sport 22 -j ACCEPT    
    iptables -t nat -I PREROUTING -m tcp -p tcp --dport 60000 -m comment --comment "redirect pkts to virtual machine" -j DNAT --to-destination 2.2.2.2:22   
    iptables -t nat -I POSTROUTING -m comment --comment "NAT the src ip" -d 2.2.2.2 -o eth1 -j MASQUERADE
    

    0 讨论(0)
提交回复
热议问题