You need an OUTPUT DNAT rule as well (and NAT of local connections
enabled in your kernel config), or to use a redirector helper rewriting
the IP address to the real destination..
Regards
Henrik
Siew Wing Loon wrote:
>
> Hi,
>
> I have my squid running fine but having problem
> assessing to IP address using iptables DNAT
>
> FW + Squid using External IP Address 2.2.2.1
>
> iptables -t nat -A PREROUTING -p tcp -d 2.2.2.1
> --dport 80 -j DNAT --to 192.168.100.4:80
>
> When I tried to access 2.2.2.1 via Squid, it display
> this error message below :-
>
> ERROR
> The requested URL could not be retrieved
>
> ------------------------------------------------------
>
> While trying to retrieve the URL: http://2.2.2.1/test/
>
> The following error was encountered:
>
> Connection Failed
> The system returned:
>
> (111) Connection refused
> The remote host or network may be down. Please try the
> request again.
>
> Rgds,
> Siew
>
> __________________________________________________
> Do you Yahoo!?
> Yahoo! Shopping - Send Flowers for Valentine's Day
> http://shopping.yahoo.com
Received on Fri Feb 14 2003 - 03:07:07 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:13:22 MST