Date: Tue, 22 Dec 2009 20:08:12 +0300 (MSK) From: "Igor V. Ruzanov" <igorr@canmos.ru> To: tscolari@gmail.com Cc: freebsd-questions@freebsd.org Subject: Re: Help with ipfw please Message-ID: <Pine.LNX.4.64.0912222003150.24683@sta1.canmos.ru> In-Reply-To: <Pine.LNX.4.64.0912221944060.24683@sta1.canmos.ru> References: <614b39480912220459l378faa15ufa7514ce2c1d5825@mail.gmail.com> <1265047402.20091222182427@yandex.ru> <Pine.LNX.4.64.0912221944060.24683@sta1.canmos.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tue, 22 Dec 2009, Igor V. Ruzanov wrote: |-----BEGIN PGP SIGNED MESSAGE----- |Hash: SHA1 | |On Tue, 22 Dec 2009, Коньков Евгений wrote: | ||Здравствуйте, Tiago. || ||Вы писали 22 декабря 2009 г., 14:59:50: || ||T> Im trying to add a basic rule in my ipfw. ||T> My server has 2 network address, one for external access (x.x.x.x) and other ||T> for the local network(y.y.y.y). ||T> The mysql is binded to the local network, but I would like to allow my home ||T> computer (z.z.z.z) to connect to the mysql by the external ip. ||T> so basicaly im trying to do is: if request comes from z.z.z.z to ||T> y.y.y.y:3306 redirect to x.x.x.x:3306 ||T> I tryed some configuration but I ended locked outside the machine... || ||You need -redirect_port ||man natd: | |Also it could be done at kernel-level with ipnat. Simple rule doing |something like DNAT looks like (/etc/ipnat.conf): | |rdr <input_if_name> z.z.z.z port 3306 -> x.x.x.x port 3306 tcp Oh sorry! z.z.z.z necessary to replace with x.x.x.x from your task (external IP), and x.x.x.x by y.y.y.y from your task (private IP). +-------------------------------------------+ ! CANMOS ISP Network ! +-------------------------------------------+ ! Best regards ! ! Igor V. Ruzanov, network operational staff! ! e-Mail: igorr@canmos.ru ! +-------------------------------------------+ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.6 (GNU/Linux) Comment: For info see http://quantumlab.net/pine_privacy_guard/ iD8DBQFLMPz8bt6QiUlK9twRApFzAJ9OPj1QP/Asxen3aprWPFtTaxT6AwCfcjZc C42ztGPXSqJRP3LeZ9zK/Ok= =ZZvR -----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.LNX.4.64.0912222003150.24683>