Solved

SuSE Firewall - FW_REDIRECT

Posted on 2006-06-25
3
990 Views
Last Modified: 2012-08-13
NOTE: This may seem like a DB question at first but eventually boils down to a networking question.

I am running a MySQL server on a SuSE 10.1 server. I would like to be able to connect to the same server instance using 2 different ports: 3306 (standard) and 3307. I added an entry into FW_REDIRECT as follows: 0/0,192.168.168.XXX,tcp,3307,3306 This works and allows me to connect to the MySQL server using port 3307 from all computers in my network EXCEPT for the computer running the MySQL server, 192.168.168.XXX. I need this rule or this rule and others to work for 192.168.168.XXX also.

Thanks in advance for any help.

Phil
0
Comment
Question by:MrPickle
  • 2
3 Comments
 
LVL 27

Expert Comment

by:Nopius
ID: 16981731
# for external incoming packets
iptables -t nat -A PREROUTING --destination 192.168.168.XXX --protocol tcp --destination port 3307 -j REDIRECT --to-ports 3306
# for locally generated packets
iptables -t nat -A OUTPUT --destination 192.168.168.XXX --protocol tcp --destination port 3307 -j REDIRECT --to-ports 3306
0
 

Author Comment

by:MrPickle
ID: 16983020
Am I correct in assuming that the SuSE firewall is just a front end GUI for iptables firewall and that there is a configuration file somewhere that I can add the two rules you provided?

Also one more question. I noticed "nat" was in both commands you provided. This computer is not acting as a router or providing nat for the network, I have a hardware appliance I use for those tasks . Do the rules you provided still apply?
0
 
LVL 27

Accepted Solution

by:
Nopius earned 250 total points
ID: 16988520
> Am I correct in assuming that the SuSE firewall is just a front end GUI for iptables firewall
Probably yes. To be sure, execute commands:
iptables -L -t nat
iptables -L -t filter
after you have configured port forwarding via the GUI and copy paste here.

Why probably? Because iptables not the only firewall in Linux, also it may be ipfilter.
Anyway after disabling all rules you have configured in GUI and running these two commands you should have working redirection.

> Do the rules you provided still apply?
Yes, I've tested them before posting. My PC is also not a router.
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Join & Write a Comment

Suggested Solutions

I have seen several blogs and forum entries elsewhere state that because NTFS volumes do not support linux ownership or permissions, they cannot be used for anonymous ftp upload through the vsftpd program.   IT can be done and here's how to get i…
Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
Excel styles will make formatting consistent and let you apply and change formatting faster. In this tutorial, you'll learn how to use Excel's built-in styles, how to modify styles, and how to create your own. You'll also learn how to use your custo…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now