ipfw port forwarding
Dan Shoop
shoop at iwiring.net
Mon Dec 10 11:50:59 PST 2007
First, cut out the cros posting. It's evil.
On Dec 9, 2007, at 8:49 PM, John Musbach wrote:
> I have internet sharing enabled on one mac which is in a dmz and am
> trying to get another mac which is connected to the dmz'd mac via
> internet sharing to have traffic received by the dmz'd mac for a
> certain port to be forwarded to the connected mac...however the
> terminal command "sudo ipfw add 02110 forward 10.0.2.7 in" doesn't
> work (returns from missing but if I add "from any" after the ip I get
> a invalid syntax error regarding that statement so I don't understand
> what it wants), what am I doing wrong? Thanks!
>
> P.S. Obviously the easiest solution would to dmz this mac in question
> as well right? Unfortunately the router I'm using only allows one IP
> to be in a dmz at a time so that isn't a option since the currently
> dmz'd mac is a 24/7 public server...
This is all a bit foggy, could you describe this set up a bit better?
What are your NIC's in question? Have a bit of a diagram to share w
subnets? What's sysctl saying? What's the routing table like (on the
various machines)?
It also sounds like you're not using a real router but a NAT box,
which may make this very difficult to impossible depending on that.
What is it?
-dhan
------------------------------------------------------------------------
Dan Shoop
Computer Scientist
iWiring / U.S. Technical Services
shoop at iwiring.net
AOL IM .................... iWiring
Nextel .................... 1-714-363-1174
Operations TOC (24/7) ..... 1-866-901-USTS
USTS Offices .............. 1-714-374-6300
For immediate response for urgent matters please speak to the Duty
Officer
at the USTS Tactical Operations Center (above) who can reach me by
radio.
More information about the MacOSX-admin
mailing list