Stateful Load Balancer with iptables and NAT Rumi, October 2, 2018October 2, 2018 Allow IP forwarding (Note: if your testing this on the same box your doing this on it won’t work, you need at least 3 machines to test this out, virtual ones work nicely) First we enable ipv4 forwarding or this will not work: # echo “1” > /proc/sys/net/ipv4/ip_forward XOR #… Continue Reading
NFS Firewall Rumi, September 9, 2015 Dynamic ports cannot be protected by port filtering firewalls such as iptables. First, you need to configure NFS services to use fixed ports. Open /etc/sysconfig/nfs, enter: # vi /etc/sysconfig/nfs Modify config directive as follows to set TCP/UDP unused ports: # TCP port rpc.lockd should listen on. LOCKD_TCPPORT=lockd-port-number # UDP port… Continue Reading
Enable 1:1 NAT in Iptables Rumi, April 17, 2015 1:1 NAT maps a single Public IP Address to one of your computer within your local area network (LAN). Unlike port forwarding, 1:1 NAT forwards all ports from one external IP to one internal IP. iptables -t nat -A POSTROUTING -o eth0 -s 192.168.1.2 -j SNAT –to-source 83.229.64.2 iptables -t… Continue Reading
How to enable Port Forwarding in Iptables Rumi, April 17, 2015 Port forwarding allows remote computers, for example, computers on the Internet, to connect to a specific computer or service within a private local area network (LAN). Typical applications include the following: Running a public HTTP server within a private LAN Permitting Secure Shell access to a host on the private… Continue Reading
Install Tomcat 6 in Debian Rumi, February 19, 2012 This article outlines a procedure for installing Tomcat 6 in Debian Lenny. Keep in mind that this does not include Apache 2 installation or integration. Apache must be installed separately and integrated to work with Tomcat. Add following line in sources list- nano /etc/apt/sources.list deb http://ftp.debian.org/debian/ squeeze non-free Update… Continue Reading