Networking :: How To Do NAT In Iptables (IP Public To Internal IP)

Mar 22, 2010

How to do NAT in Iptables? ..I am trying to NAT IP public:Port to Internal IP:Port (202.a.b.c SMTP to SMTP) ..

View 14 Replies


Networking :: Access Firewall Public IP From Internal NATed DMZ Machine?

May 13, 2010

I could no handle/circumvent on the past week, despite of the several "googling" and documents reading. I will try to mention all needed bits... I'm managing a network with the following structure:

eth0: internal net
eth1: DMZ
eth2: 10 mbit/sec sync line with eight public /29 IP's + a /30 interconnection network. All public IP's must use the interconnection's network gateway.
eth3: ADSL with ppoe with fixed IP (ppp0).

Now, a few extra info:

- All internal traffic is routed through ppp0 except when it's destined for DMZ and public IP's range.
- DMZ traffic is routed either through ppp0 or eth2. This is done by source IP.
- eth2 has on IP from the interconnection network, and six public IP's are also defined on eth2. Command: "ip addr add ...."


View 6 Replies View Related

CentOS 5 Networking :: Public Subnet Is Not Accessible From The Internal Network

Aug 6, 2010

I will try to explain a bit first about my network typology: I have one cent os 5.5 machine with 2 nics - external one 86.x.x.122 and internal one with 2 IPs: and 89.x.x.121. The ideea is that I have a public subnet (86.x.x.120/29) of IPs which are routable only through 86.x.x.122 so I have a webserver hosted on a different machine with the IP of 89.x.x.122 and GW 89.x.x.121 - everything works perfectly fine, except that I cannot access from the internal network / 24 the so called DMZ (roughly) - the 89.x.x.122.

What really makes me crazy is that I setup the IPtables rules correctly because I can access the webserver from the outside world but I cannot accessit from the internal network...

what I'm missing - why the cannot see the 89.x.x.122 machine... What IPtables rules should I add?

View 2 Replies View Related

Networking :: Forward Multiple Public Addresses With Iptables?

Jun 3, 2011

iptables and multiple public-facing IP addresses. With the current setup I have a public-facing firewall with iptables which will then forward traffic to a LAN IP. I will hopefully be allotted 1 private IP per public IP, which I hope will make this much more simple. For example, I have server A with the LAN IP of which I would like to have traffic forwarded from, the public IP. I also have server B with LAN IP of which I would like to have forwarded from, the second public IP. From what I have read and understood, this should be a simple task, however I would just like to double check to make sure that it is in fact possible, and if so, how would it be recommended that I go about doing so. Essentially, I need to forward each public IP to a corresponding LAN IP with all ports.

View 3 Replies View Related

Networking :: Setup Iptables Firewall And DMZ With Multiple Public IP's?

Nov 27, 2008

We have a new Bussiness DSL line with 16 public addresses.What we want is to setup a DMZ to run some services and internet to the LAN. Here's a schematic of what we want:


Backup Internet Main Internet
connection connection
| |
| |
SDSL Modem BDSL Modem


The webserver has the following settings:


What IPTABLES rules do i need to setup to "see" all IP's in the DMZ-2 from the internet?

View 2 Replies View Related

Networking :: IPTables - Cannot Ping Or Access Internal Server

Mar 31, 2010

Basically, I have a windows 2003 server virtual machine (vmware) inside Ubuntu 9.10.

The Ubuntu machine has IFconfig:
Code: sam@sam-laptop:~$ ifconfig
eth0 Link encap:Ethernet HWaddr 00:15:c5:b8:c8:8b
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:0 (0.0 B) TX bytes:0 (0.0 B)

Why can't I ping or simply access the internal server on my ubuntu machine from a another computer on the (slash)25 physical network? Do I need a bridge? Iptables?

View 4 Replies View Related

Networking :: IPtables: Route Outgoing Traffic From Internal Host To Only Go A Internet Interface?

Nov 21, 2010

My Ubuntu Box has 3 interfaces. eth0 (Internal (External ISP DHCP)eth2 (External ISP Static IP)I need the outgoing traffic to internet for 1 of the internal pc ( to only go only go through eth2

View 4 Replies View Related

Server :: Accessing Internal Webserver From Public Webserver

Dec 18, 2009

Ok let's say I have Apache Webservers on 2 different machines within my network, I have setup at to point to my modem at home, and my router forwards Port 80 to the ServerA Machine (i.e. I can access my webpage I setup for the Server A Machine.

But what I want to try and do is somehow access my ServerB machine's website that is on my same network. I tried something like this and the apache page came up with something like the page wasn't available. I want to access the content of the ServerB website, but because I have only one router, i can only forward Port 80 site traffic to my ServerA machine's website. I'm sure it's a different syntax I should use but i'm just not sure what I should enter to bring up the apache root web page for the Server B website via

I tried setting up DNS A records on ServerA, but I don't think it will work with what i'm trying to do above.

View 1 Replies View Related

Ubuntu :: Use Openssl Public And Private Keys So Only A Host With The Public Key Could Access / Decrypt The Filesharing

Aug 2, 2011

I'm trying to write a p2p file sharing program using python's built-in libraries. Everything is going well. The only thing is that i'd like to be able to use openssl public and private keys so only a host with the public key could access/decrypt the filesharing. I've gotten these libraries (httplib, basehttpserver, ssl, os) to work using just a pem file containing both the public and private keys but no success with them seperately. Can someone point me in the right direction or offer an alternative? PS, the goal of the project is to create an anonymous, decentralized, secure file sharing program. I want to be able to upload this to sourceforge so everyone can use it, if that's any incentive

View 2 Replies View Related

General :: Mv: Cannot Stat `/public/public/clamscans/*.txt': No Such File Or Directory

Sep 24, 2010

I run the following file with the >log.log redirector and it does not capture errors.

echo ************************BEGIN LOG******************************
date +"%m/%d/%Y %H:%M:%S $HOSTNAME"
cp -f /scripts/original/clamscans.log /scripts


The following errors show up when I run from the file from the term window, but are not written to log.log:

tar: /public/public/clamscans/*.txt: Cannot stat: No such file or directory
tar: Error exit delayed from previous errors
mv: cannot stat `/public/public/clamscans/*.txt': No such file or directory

I know with windows you can add the 2>&1 to capture error data. Is there such a thing for Linux?

View 2 Replies View Related

Debian Configuration :: Forward Traffic From Public IP To Another Public IP?

Mar 3, 2010

How can I forward all traffic from a public IP to another public IP. Let's say I have a first debian box named box1 with eth0 = and eth0:1 = and I want to forward all traffic from to "box2" located somewhere else over the internet and having for eth0 Both and are public IP ranges.

View 1 Replies View Related

General :: Move The Contents Of /public-back/templates Recursively With Permissions Into /public/templates?

Apr 20, 2011

ls -al ../public-back
drwxrwxr-x 4 apache apache 4096 Apr 19 03:32 templates
ls -al ../public-back/templates
drwxrwxr-x 2 apache apache 4096 Apr 19 03:33 content


How do I move the contents of /public-back/templates recursively with permissions into /public/templates ?

View 2 Replies View Related

Ubuntu Networking :: SSH Public Key Denied?

Nov 18, 2010

I set up an SSH server on my home machine and finally figured out that I needed to disable password authentication to get RSA authentication enabled. Now I'm having problems with that too.ssh -v -i id_rsa ashtray@x.x.x.83

OpenSSH_5.1p1 Debian-5, OpenSSL 0.9.8o 01 Jun 2010
debug1: Reading configuration data /etc/ssh/ssh_config


View 1 Replies View Related

Networking :: Connect To Server Without Public IP?

Jul 18, 2011

I want to use my personal computer remotely. The problem is my computer is connected to a local network that I can't modify. I can connect from my computer to another one that has public IP via ssh. Is it possible to login to the "proxy" computer from somewhere and somehow use the connection established before to connect to my PC?

View 3 Replies View Related

Networking :: Ssh To Computers On LAN From A Proxy That Has Public IP?

Apr 13, 2010

I have a PC which has a Public IP.It is a webserver but it is not a proxy server.I want to be ableto do an ssh to the machines which are behind this webserver on LAN in one step.Right now I do an SSH to this webserver and then do an SSH to any other machine on my LAN how can I do it in one step.

View 3 Replies View Related

Networking :: Can't Get Internet In Public Library?

Jan 14, 2011

I just set up my ubuntu 10.10, which boot up by usb drive,

and I found a problem that I can't get my internet when I was

sitting in a public library. The firefox show me every website is

untrust. Normally, when first connect to this network, I need to

accept a library contract on webpage, which called spyder.local.

Does anyone could fix it? or there is something related to the

firefox setting. I currently keep every setting by default

View 1 Replies View Related

Networking :: Multiple Public IPs With VirtualBox?

Jan 4, 2011

I recently purchased a block of 5 IPs from Comcast. I have a computer running Arch Linux connected to the Comcast gateway they gave me. On my connected computer I have 2 Windows XP virtual machines running. Now I was wondering how can I make each of those virtual machines have a different public IP, because currently the only thing I can get working is have the computer and both virtual machines sharing the same public IP.

View 3 Replies View Related

Networking :: Multiple Web Servers With One Public Ip?

Feb 16, 2009

i am working at a place that has 2 physical web servers yadayada1 and yadayada2 but only one public ip address i can use dyndns to register 2 dynamic domains on the same ip address
how can i get to route to yadayada1 and to route to yadayada2 ?

View 14 Replies View Related

Networking :: Nating PUBLIC IP To One Local IP?

Feb 15, 2011

I have cent OS 5.5, i am not getting proper command for the same.

View 6 Replies View Related

Networking :: Public Static Ip Routing ?

Jun 14, 2011

I've been trying to get it work for 2 days now..

Here's my setup.

MODEM -> router (ISP one don't have access)

from the router it split into 2 connection one to my GW (linux debian) and another to a switch which is connected to a web/email server and the gateway.

My gw use x.x.x.27 and x.x.x.26 (everything I use on these ips is ok)

on the web/email server I have x.x.x.28 29 and 30

With this setup it's ok but I want to eliminate the link to the switch and make it pass thru the GW and i can't manage to get it work!

View 4 Replies View Related

Networking :: Qmail Not Responding On Public Ip?

Mar 11, 2011

I have problem with qmail. From today I can't connect to my server, when I login via ssh on serwe and check

telnet localhost 110
I can connect but when I try


View 3 Replies View Related

Networking :: Unable Browse Own Public IP From LAN

Apr 23, 2010

My web server public IP is: and it was natted to internal IP just confusing why I am unable to browse from LAN? (I able to browse from LAN)

View 11 Replies View Related

Fedora Networking :: Wireless On Public Not Allowed?

Nov 25, 2009

As waht it says above. I can't access public wifi as any browser on every single distro i've tried (15+) won't load just stuck in perpetual loading. No error message or nothing.

Also the browser wouldn't work until i disabled ipv6 in about:config. All browsers do this. is there something i could do to disable it completely so i have a browser choice?

View 5 Replies View Related

Ubuntu Networking :: Public Key Authentication Fails?

Feb 6, 2010

I'm trying to connect to my Xubuntu box (zelda) remotely using my RSA key. I'm using Cygwin on my Windows box (link) to SSH in to the Xubuntu box. I've created the key and placed it in the authorized_keys file on my remote box. Here's where it gets weird. When I ssh into zelda the first time, it prompts me for my password. However, if I'm already connected to zelda and try to open another connection, it prompts me for my RSA passphrase. This is very confusing, and I have no idea what's going on.Here's my sshd_config file on zelda.

# Package generated configuration file
# See the sshd(8) manpage for details


View 9 Replies View Related

Networking :: SSH Setup - Public / Private Key Authentication?

May 7, 2010

After years with Linux and using ssh on a daily basis I have to admit I've never setup public/private key authentication and I've never run passwordless logon to ssh. It's not that I've never tried, I have - I've just never got it working. That to me is an almost alien concept as I am a tinkerer at heart and rarely stop until something is working the way I'd like it to. I get the principle of what's going on but I've always had a mental block about it.

View 3 Replies View Related

Networking :: SSH Chaining (tunnelling) With Public Keys

Sep 30, 2010

I've been searching for a while in forums about the issue I'm facing but couldn't find anything clear, or at least my net search skills are pretty lame. I'm facing a problem with prompted user password in a SSH chain connection when using authorized_keys.

I have: (1) Client - (2) Server - (3) Testing machine (testing machine is connect to Server via usb network)I've created keys for Client and Server, and updated authorized_keys in host machines with the key values: Testing machine has Server public key, and Server has Client public key.Until now everything is fine, if I try to connect via ssh the user password prompt is not shown since public key is found in authorized_keys.

For example: from Client: Code: ssh server Works fine, no password prompt.from Server: Code: ssh testing_machine Works fine, no password prompt.But if try to do that from Client only: from Client: Code: client:$ ssh server Works fine, no password prompt.from Client: Code: server:$ ssh testing_machine Asks for password.Bellow the verbose output from previous ssh command:

Code: ssh -v root(at)
OpenSSH_5.3p1 Debian-3ubuntu4, OpenSSL 0.9.8k 25 Mar 2009
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Applying options for *
debug1: Connecting to [] port 22.

View 1 Replies View Related

Networking :: Access Public IP From Local Subnet

Jan 22, 2011

does somebody know how dnsmasq / iptables need to be configured such that requests to my public IP from lan are correctly NAT'ed to the host that handles them? Currently my routing device treats them like "oh, these are anyway for me, gnam gnam" which actually doesn't work.Unfortunatly setting up NAT rules that redirect requests from my lan correctly as they are redirected from wan is an option I would like to use only if there is no other possibility.I would like some kind of solution that treats packets that are sent to my public IP as normal packets that are not looped back before they even get out. So they would need to be at least sent to the wan gateway where they are directed back where my firewall can successfully treat them like all other public requests.

View 1 Replies View Related

Networking :: Public Ip Address Isp Gives Point Back To Box?

Jun 13, 2011

I want to do some basic web hosting, mainly for the experience. I have verizon fios for my isp, and what i am wondering is can i have the public ip address that they give me when i connect out to the internet point back to my linux box?

The reason that i am asking this is because i want to register a .com and i would like to have that point back to my linux box, i have looked at a few services and it seems that will do this and they seem to be the best choice. Before i register the .com i turnd on my httpd server but i am not sure how to get the public ip point back to my box...?

I have been doing some research and i am learning about things such as

port forwarding
dynamic dns

Verizon fios like most isp's uses a dhcp connection meaning that the public ip address i get will change 1-2 a year. What i don't know is how can i setup my network at home preferably with iptables to have that public ip routed back to my linux box at home? I am using fedora 15 for those that are wondering...

Also when i enabled port forwarding and started my web server and tried loading http://mypublicipaddress in firefox i am directed to a verizon page with a login and password prompt.

I am aware that i will need to get certain information from my isp to have their public ip address routed back to my linux box but i am unware of what to ask them...?

If anyone here can tell me the following i will be so happy because it seems like a lot to hosting at home but i really want to learn...

here is what i need to know?

1) What kind of questions and information do i need to ask and get from my isp? DNS info? Logins and Passwords?

2) What do i need to do on my linux box to have that public ip address routed back to my linux box at home?

3) What rules do i need to add to my iptables script to allow this, i know there are certain nat rules that need to be added and port forwarding is needed as well..

4) anything else you can think of that i need to do...

View 9 Replies View Related

Networking :: How To Create Public Blacklist For Squid

May 28, 2009

I'm updating many servers blacklist manualy. from time to time. I want to create a blacklist and host it on a website, and servers will update from this list regularly. For servers I'm using:


And for proxy I'm using Squid. And I dont use squidguard.

View 2 Replies View Related

Networking :: Keepalived Redirect Public Vip To Private Vip?

Jun 2, 2011

I have a strange problem and I can't seem to find clear information on how to do this . I have 2 loadbalancer set up keepalived NAT mode with 2 interfaces each

internal vip -
external vip - 195.x.x.21
lb1 -master
bond0 - private -


View 1 Replies View Related

Copyrights 2005-15, All rights reserved