Hi All,
I've been fighting with a DNAT problem for the last week and need some assistance.
I am trying to setup access to my home web server using DNAT and can't seem to get it to work. Using the manual to configure DNAT is also not very helpful.
To start here is some information on what I have done so far:
DSL Router setup:
Searching the portal also doesn't give any solutions that have been verified. Doing a google search returned the following DNAT rulesets:
Thanks in advance for your help.
Regards,
Jasper
I've been fighting with a DNAT problem for the last week and need some assistance.
I am trying to setup access to my home web server using DNAT and can't seem to get it to work. Using the manual to configure DNAT is also not very helpful.
To start here is some information on what I have done so far:
DSL Router setup:
Speedport W723VAstaro v8.305 Home Setup
Port Rule Activated: checked
Description: WebServerName
Type Rule: WebServer
Good for Device: WebServerName
Forwarded Ports/Port Range
TCP-Ports: 8080
DNATERROR Message when I try to connect to the webserver from outside my home network
Position: 1
Traffic Source: Internet
Traffic Service: HTTP
Traffic Destination: ExternalInterface
NAT Mode: DNAT
Destination: WebServer IP
Destination Service: [blank]
Log inital packets: checked
Automatic Firewall rule: checked
2012:07:02-14:29:39 ******** ulogd[4646]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth1" outitf="eth0" srcmac="" dstmac="" srcip="ip_Internal_WebSrv" dstip="ip_Remote_host" proto="6" length="48" tos="0x00" prec="0x00" ttl="63" srcport="8080" dstport="19995" tcpflags="ACK SYN"Port forwarding on the DSL Router works for WebAdmin on port=4444. There is a general rule for http from my home network into the internet.
Searching the portal also doesn't give any solutions that have been verified. Doing a google search returned the following DNAT rulesets:
iptables -t nat -A PREROUTING -i eth0 --dst $INET_IP -p tcp --dport 80 -j DNAT --to-destination $HTTP_IPI haven't implemented the above rulesets yet, because I wanted to check in the forum before I start mucking around with the command line. In the meantime, I am trying to implement the above rules through the webadmin interface.
iptables -t nat -A POSTROUTING -p tcp --dst $HTTP_IP --dport 80 -j SNAT --to-source $LAN_IP
iptables -t nat -A OUTPUT --dst $INET_IP -p tcp --dport 80 -j DNAT --to-destination $HTTP_IP
Thanks in advance for your help.
Regards,
Jasper