[ previous ] [ next ] [ threads ]
 
 From:  JSimoneau at lmtcs dot com
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  RE: [m0n0wall] Accessing internal hosts via external IP
 Date:  Thu, 31 Mar 2005 14:44:32 -0500
Dave,

This is a known issue with monowall. From the LAN you need to access
systems using their LAN IP address. NAT only works from the WAN interface.

The solution to this is the DNS Forwarder, but that might not be what
you're looking for if you're doing everything by IP address.

Regards,
Josh Simoneau



-----Original Message-----
From: David Cavanaugh [mailto:dcavanaugh at thewebpros dot net]
Sent: Thursday, March 31, 2005 1:13 PM
To: m0n0wall at lists dot m0n0 dot ch
Subject: [m0n0wall] Accessing internal hosts via external IP

Using iptables we were able to access internal machines via their public
IPs using commands similar to:

iptables -t nat -A PREROUTING -i $INTERNAL_INTERFACE -d $EXTERNAL_ADDRESS
-j DNAT --to $INTERNAL_ADDRESS

iptables -t nat -A POSTROUTING -o $INTERNAL_INTERFACE -d $INTERNAL_ADDRESS
-s $DMZ_NETWORK -j SNAT --to $DMZ_GATEWAY

And it worked for years-- no problems.

Now, since I am totally ignorant concerning ipfilter and ipfw, can anyone
unequivocally say that is impossible in m0n0wall?

I'm only curious.

Thanks,

Dave

---------------------------------------------------------------------
To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch