iptables端口转发

routing
decision
IN ——> PRE —> ——> FORWARD —–> —-> POST —–> OUT
interface  ROUTING  \       filter       /       ROUTING     interface
DNAT     |       tracking     ^       SNAT
REDIRECT |                      |       MASQUERADE
v                     |
INPUT                OUTPUT
| filter             ^ filter,DNAT
v                     |
\–> Local Process –/
user-space programs

-A PREROUTING -d 210.14.65.203 -p tcp -m tcp –dport 23 -j DNAT –to-destination 192.168.1.230:22
-A POSTROUTING -s 192.168.1.0/255.255.255.0 -o eth0 -j MASQUERADE
-A POSTROUTING -d 192.168.1.230 -p tcp -m tcp –dport 22 -j SNAT –to-source 192.168.1.21

On this day..

Tags: , , , ,

This entry was posted on 星期二, 五月 13th, 2008 at 17:30 and is filed under Linux, MySQL. You can follow any comments to this entry through the RSS 2.0 feed. You can leave a comment, or trackback from your own site.

Leave a comment