Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email email@example.com
Re: [suse-security] SuSEfirewall 2 - redirect ports on internal interface to DMZ
From: Dirk Schreiner (Dirk.Schreinertria.de)
Date: Wed Sep 27 2006 - 15:44:49 CDT
It should solve youre Problems.
Dirk Enrique Seiffert schrieb:
> I am moving a Mailserver from the internal network to the DMZ. This move
> should be invisible for the enduser. Lat but not least: Some hundred mail
> clients are configured to consult an IP, not a name: I can't solve the
> issue by configuring my DNS server.
> This is my configuration:
> 200.x.x.x (public IP)
> SuSEfirewall-192.168.254.1--------192.168.254.2 MailServer
> internal network
> I have to access the mailserver by an IP in the 192.168.0.0/24 range.
> External traffic I can easily redirect with FW_FORWARD_MASQ= to an IP in
> the DMZ. Internal traffic I can redirect to a local port on the firewall
> with FW_REDIRECT.
> Is it possible to redirect all traffic coming on the internal interface
> for 192.168.0.249 to 192.168.254.2 ?
> Any Custom rule? I was googling quite a while to, didn't find any rule
> doing a forward on the internal interface.
> Any idea is appreciated!
There are 10 sorts of people in this World.
Those who understand binary, and those who don`t.
TRIA IT-consulting GmbH
Tel: +49 (89) 92907-0
Fax: +49 (89) 92907-100
Registergericht München HRB 113466
USt.-IdNr. DE 180017238 Steuer-Nr. 802/40600
Geschäftsführer: Rosa Igl
Nachricht von: Dirk.Schreinertria.de
Nachricht an: dscaribenet.com, suse-securitysuse.com
# Dateianhänge: 0
Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-helpsuse.com
Security-related bug reports go to securitysuse.de, not here