 Home |
Products |
Support |
Community |
News |
xen-users
[Xen-users] Help with NAT and port translation on Xen
| To: | xen-users@xxxxxxxxxxxxxxxxxxx |
|---|---|
| Subject: | [Xen-users] Help with NAT and port translation on Xen |
| From: | "AkiL Mussá" <akilmussa@xxxxxxxxx> |
| Date: | Sat, 30 Sep 2006 09:34:00 +0200 |
| Delivery-date: | Sat, 30 Sep 2006 00:34:39 -0700 |
| Domainkey-signature: | a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:mime-version:content-type; b=P5yHEnRcKXJ1fwSm/y4QdU5WpPQ2a2RQzWM3+JERMKhIHqjRqy3kISvycPcv/+e+PVk75FU0E2spZw59phCeu3JmbidsZvwa3mm+2RyNRrgNhpTGi0rWwUtdekeBwJWPkoYRfO7YVMItBo4NCLkoX5R3YVcIaYLGMipN1Gp7DZ8= |
| Envelope-to: | www-data@xxxxxxxxxxxxxxxxxx |
| List-help: | <mailto:xen-users-request@lists.xensource.com?subject=help> |
| List-id: | Xen user discussion <xen-users.lists.xensource.com> |
| List-post: | <mailto:xen-users@lists.xensource.com> |
| List-subscribe: | <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe> |
| List-unsubscribe: | <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe> |
| Sender: | xen-users-bounces@xxxxxxxxxxxxxxxxxxx |
|
Hi all, I need some help setting up iptables with NAT and port translation. I need to redirect all traffic comming to 41.220.40.183:80 to 10.0.0.1:8080 The netfilter HOWTO says that its possible using the following rule, but it isn't working for me: iptables -A PREROUTING -t nat -p tcp -i eth0 --dport 80 -j DNAT --to 10.0.0.1:8080 When I setup NAT using the same port (port 80 to 80), it works perfectly. The problem is when redirecting from port 80 to 8080 Note: - 10.0.0.1 is a virtual machine created using Xen VMM My actual configuration is: # iptables -L -t nat -nv Chain PREROUTING (policy ACCEPT 1659 packets, 143K bytes) pkts bytes target prot opt in out source destination 0 0 DNAT tcp -- eth0 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:80 to:10.0.0.1:8080 Chain POSTROUTING (policy ACCEPT 28126 packets, 1747K bytes) pkts bytes target prot opt in out source destination 17560 1110K MASQUERADE all -- * eth0 0.0.0.0/0 0 .0.0.0/0 Chain OUTPUT (policy ACCEPT 45638 packets, 2854K bytes) pkts bytes target prot opt in out source destination ##### ##### ##### ##### ##### # iptables -L -nv Chain INPUT (policy ACCEPT 3470K packets, 374M bytes) pkts bytes target prot opt in out source destination Chain FORWARD (policy ACCEPT 3212 packets, 1440K bytes) pkts bytes target prot opt in out source destination 0 0 ACCEPT all -- * * 10.0.0.1 0.0.0.0/0 PHYSDEV match --physdev-in vif5.0 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 PHYSDEV match --physdev-in vif5.0 udp spt:68 dpt:67 0 0 ACCEPT all -- * * 10.0.0.2 0.0.0.0/0 PHYSDEV match --physdev-in vif6.0 0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 PHYSDEV match --physdev-in vif6.0 udp spt:68 dpt:67 Chain OUTPUT (policy ACCEPT 3465K packets, 353M bytes) pkts bytes target prot opt in out source destination Thanks for any help... -- AkiL Mussá Software is like SEX, it is better when it is FREE (Linus Torvalds) _______________________________________________ Xen-users mailing list Xen-users@xxxxxxxxxxxxxxxxxxx http://lists.xensource.com/xen-users |
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| ||
| Previous by Date: | [Xen-users] Creating a Xen RPM package, Stephen Yum |
|---|---|
| Next by Date: | Re: [Xen-users] Xen + Windows + Intel VT-x stability, Terje J. Hanssen |
| Previous by Thread: | [Xen-users] xen console and CTRL-C, Arnaud JAYET |
| Next by Thread: | [Xen-users] Xen Error: "hvm_shutdown fired, shutdown reason=None", Eric Benton |
| Indexes: | [Date] [Thread] [Top] [All Lists] |
