[vserver] iptables rules for lo interface in guest:
 vserver development mailing list 
[Next/Previous Months] [Main vserver Project Homepage] [Howto Subscribe/Unsubscribe] [Paul Sladen's vserver stuff]

[vserver] iptables rules for lo interface in guest

From: Michael <michael.auckland_at_gmail.com>
Date: Tue 29 Sep 2009 - 19:42:16 BST
Message-ID: <35207fdf0909291142j290c7371v902a0d5433b5045@mail.gmail.com>

Hi All,

previous install on xen was using iptables to redirect posgreslq port
( 5631) to different port :
-A PREROUTING -p tcp -m tcp --dport 5631 -j REDIRECT --to-ports 5666
-A OUTPUT -p tcp -m tcp --dport 5631 -j REDIRECT --to-ports 5666

when migrated to virtual server use rules on host to redirect port:
-A PREROUTING -d $EXTIP/32 -i eth0 -p tcp -m tcp --dport 5631 -j DNAT
--to-destination $GEUSTIP:5666
which working OK for any outside access but not for localhost in guest.
so I am a bit confuse how properly apply iptabels on host so it will
work for lo in guest?
Tried tcpdump - it will show like guest ip like 127.111.0.1 applying
it as source or dst in iptabels doesn't help. 

-- 
--
Michael
Received on Tue Sep 29 19:44:38 2009
[Next/Previous Months] [Main vserver Project Homepage] [Howto Subscribe/Unsubscribe] [Paul Sladen's vserver stuff]
Generated on Tue 29 Sep 2009 - 19:45:04 BST by hypermail 2.1.8