[Firehol-support] iptables to firehol

Nikolay Kubarelov admin at gramophon.com
Mon Nov 28 09:40:35 GMT 2011


Hello, Firehol list,


I'm trying to translate this iptables rules to firehol:

iptables -t nat -A PREROUTING -p tcp --dport 1664 -j DNAT 
--to-destination 10.8.0.48
iptables -A FORWARD -s 10.8.0.48 -p tcp --dport 1664 -j ACCEPT

And I'm trying to use it in firehol like this:

nat to-destination 10.8.0.48 inface eth0 proto tcp dport 1664

Is this snippet okay?

Here is my full firehol.conf

-------------------------
version 5

# Accept all client traffic on any interface
#interface any world
#    client all accept


#nat to-source "${ppp_interface_ip}" outface ppp+
#nat to-destination "${home_interface_ip}" inface ppp+

#nat to-source 10.8.0.3 outface eth0 proto "tcp udp" dport 80
#nat to-destination 10.8.0.48 inface eth0 proto "tcp udp" dport 80
nat to-destination 10.8.0.48 inface eth0 proto tcp dport 1664
nat to-destination 10.8.0.48 inface eth0 proto udp dport 1664

#dnat 10.8.0.3:80 inface tap0

server_ovpn_ports="udp/1194"
client_ovpn_ports="default"

server_openservice_ports="tcp/1604 udp/1664"
client_openservice_ports="default 1664"

interface eth0 world
     server ssh accept
     server http accept
     server ovpn accept
     server openservice accept
     client all accept

interface tap0 vpn
     server openservice accept
     server icmp accept
     server http accept
     client all accept

router vpn2world inface tap0 outface eth0
     masquerade
     server openservice accept
     server http accept
     route all accept

-------------------------


I'm trying to forward port 1664 from eth0 to a client (10.8.0.48) 
connected to tap0


Thanks in advance for the help!

Nikolay Kubarelov





More information about the Firehol-support mailing list