[wellylug] firewall prerouting issue
Glen Ogilvie
nelg at linuxsolutions.co.nz
Fri Aug 27 17:36:05 NZST 2004
Hi,
I've got a little issue doing some prerouting, I hope someone knows something
about and may be able to suggest a way to do this.
I am trying to add a pre routing rule into my firewall, to preroute based on
the source IP address range.. I.e.
-A PREROUTING -s 222.152.0.0/222.152.255.255 -d 203.79.92.197 -i eth1 -p tcp
-m tcp --dport 21 -j DNAT --to-destination 192.168.0.100:21
However, this does not seem to work, but, if I use a specific IP address, i.e.
-A PREROUTING -s 222.152.3.2 -d 203.79.92.197 -i eth1 -p tcp -m tcp --dport 21
-j DNAT --to-destination 192.168.0.100:21
It Works.
Does anyone know if the -s flag when used in pre routing does not accept IP
address ranges?
Thanks
Glen Ogilvie
More information about the wellylug
mailing list