Netexpertise

Nov 30 2012

IPTables Traffic Redirection

Published by dave at 7:55 pm under Linux

Wether you need to redirect telnet or ssh connections through a server because you don’t have direct access to your final destination or you’re planning a web server migration, traffic forwarding comes in handy in many situations.
This is easily achieved on Linux distributions that come with IPtables. Yes, Iptables isn’t just a firewall but can provide nat and rewritting features.

Allow IP forwarding through the server

# echo 1 >/proc/sys/net/ipv4/ip_forward

The next step is to tell IPTables to redirect the traffic to the new server (http, port 80 in this case):

# iptables -t nat -A PREROUTING -p tcp -m tcp --dport 80 -j DNAT --to-destination dst_srv_IP

Here’s where the IPTables magic begins. With the third and final step we tell IPTables to return the traffic to the original client.

# iptables -t nat -A POSTROUTING -d dst_srv_IP -p tcp -m tcp --dport 80 -j MASQUERADE

Tags: firewall, iptables, linux, network

No responses yet

Comments RSS

Categories
- Database (10)
  - Ldap (2)
  - Mysql (7)
  - Oracle (1)
  - Postgresql (1)
- Mail (5)
  - Exchange (5)
- Misc (12)
  - Apache (5)
  - GLPI (2)
- Networking (20)
  - Cisco (8)
  - Fortinet (2)
  - Freeradius (10)
  - Monitoring (3)
- Security (7)
  - SSH (3)
- Storage (2)
- Systems (67)
  - Aix (3)
  - AS400 (13)
  - Backup (2)
  - Linux (29)
  - Solaris (3)
  - Virtualization (3)
  - Windows (20)

Get your projects done with Netexpertise
contact us »

Yearly
- 2018 (1)
- 2017 (6)
- 2016 (6)
- 2015 (10)
- 2014 (4)
- 2013 (6)
- 2012 (5)
- 2011 (8)
- 2010 (11)
- 2009 (24)
- 2008 (14)
- 2007 (7)
- 2006 (4)

Systems & Networks

IPTables Traffic Redirection

Leave a Reply

Categories

Yearly