Status: Solved
Priority: Medium
Security: Public
Views: 3135
Last Modified: 2008-07-30

Port forwarding

Hi all,

I've set port forwarding up on my debian box using:

iptables -A PREROUTING -t nat -i eth0 -p tcp --dport 80 -j DNAT --to 192.168.0.2:80
iptables -A INPUT -p tcp -m state --state NEW --dport 80 -i eth0 -j ACCEPT

and it works fine until I do a reboot. How can I get my ports to survive a reboot?

Thanx in advance

Mk

onlinede

Asked: 2008-06-02

Linux Security

2 Solutions

LVL 19

http:// thevpn.guruCommented: 2008-06-02

Use

iptables-save

LVL 19

http:// thevpn.guruCommented: 2008-06-02

http://www.faqs.org/docs/iptables/iptables-save.html

onlinedeAuthor Commented: 2008-06-03

iptables-save did not work :(

Have you got any other suggestions?

Mk

LVL 19

http:// thevpn.guruCommented: 2008-06-03

Yeah put those in a script and add it to startup. What went wrong with iptables-save

onlinedeAuthor Commented: 2008-06-03

Me! I didn't read the tutorial correctly. Got that working now how ever your right I do need to put those in to a script and add it to start up.

How do I do that?

Cheers

Mk

LVL 3

nmvCommented: 2008-06-08

Create a new file named /etc/init.d/local with the following content:

#!/bin/sh
iptables -A PREROUTING -t nat -i eth0 -p tcp --dport 80 -j DNAT --to 192.168.0.2:80
iptables -A INPUT -p tcp -m state --state NEW --dport 80 -i eth0 -j ACCEPT
#put other manual startup stuff here

Then, make the file executable:

chmod 755 /etc/init.d/local

Add it to startup:

update-rc.d local defaults 80

And that should be it!