TheMystery
New Around Here
I have a question for the nat-start script.
I want that a port is only available from one specific ip address.
So i added the following line:
iptables -t nat -I VSERVER 3 -p tcp -m tcp -s [specific ip] --dport 443 -j DNAT --to 192.168.1.10
I can now only open de web page from the specific ip address with my domain name.
This is working correctly.
Now i want to open de site within my own network with my domain name so i thought i add the same line with my external ip adress, but than it is'nt working.
It is working if i use the default virtual server / portforwarding option.
I looked on the internet and i think that i have to use masquerading.
I see that masquerading is default used in the script in /tmp/nat_rules.
Is this masquerading not used in the nat-start script?
Do i need to add masquerading in the nat-start script? and does anyone know how this line looks like?
I want that a port is only available from one specific ip address.
So i added the following line:
iptables -t nat -I VSERVER 3 -p tcp -m tcp -s [specific ip] --dport 443 -j DNAT --to 192.168.1.10
I can now only open de web page from the specific ip address with my domain name.
This is working correctly.
Now i want to open de site within my own network with my domain name so i thought i add the same line with my external ip adress, but than it is'nt working.
It is working if i use the default virtual server / portforwarding option.
I looked on the internet and i think that i have to use masquerading.
I see that masquerading is default used in the script in /tmp/nat_rules.
Is this masquerading not used in the nat-start script?
Do i need to add masquerading in the nat-start script? and does anyone know how this line looks like?
