WiFi to Ethernet Port Forwording
Posted: Mon Aug 22, 2016 9:02 pm
Hi,
I want to make my Pi to a WiFi to ethernet adapter. I created a subnet on eth0 (192.168.2.1). With iptables I managed to get internet from wlan0 (192.168.178.127) on my device (192.168.2.12). Now I would like to access port 80 throug 192.168.178.127:8080, but I don't get it running.
Here is my /etc/network/iptables:
I created it with this script:
And here is my /etc/network/interfaces:
Thanks,
Andre
I want to make my Pi to a WiFi to ethernet adapter. I created a subnet on eth0 (192.168.2.1). With iptables I managed to get internet from wlan0 (192.168.178.127) on my device (192.168.2.12). Now I would like to access port 80 throug 192.168.178.127:8080, but I don't get it running.
Here is my /etc/network/iptables:
Code: Select all
# Generated by iptables-save v1.4.21 on Mon Aug 22 21:56:13 2016
*mangle
:PREROUTING ACCEPT [59751:4052548]
:INPUT ACCEPT [59082:3875084]
:FORWARD ACCEPT [603:174099]
:OUTPUT ACCEPT [58194:5293464]
:POSTROUTING ACCEPT [58872:5477840]
COMMIT
# Completed on Mon Aug 22 21:56:13 2016
# Generated by iptables-save v1.4.21 on Mon Aug 22 21:56:13 2016
*nat
:PREROUTING ACCEPT [259:24459]
:INPUT ACCEPT [115:16286]
:OUTPUT ACCEPT [1797:108988]
:POSTROUTING ACCEPT [1690:101864]
-A POSTROUTING -o wlan0 -j SNAT --to-source 192.168.178.127
-A POSTROUTING -o wlan0 -j SNAT --to-source 192.168.178.127
COMMIT
# Completed on Mon Aug 22 21:56:13 2016
# Generated by iptables-save v1.4.21 on Mon Aug 22 21:56:13 2016
*filter
:INPUT ACCEPT [59085:3875436]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [58197:5293816]
-A FORWARD -i eth0 -o wlan0 -j ACCEPT
-A FORWARD -i wlan0 -o eth0 -m state --state RELATED,ESTABLISHED -j ACCEPT
COMMIT
# Completed on Mon Aug 22 21:56:13 2016
Code: Select all
#!/bin/sh
IPT=/sbin/iptables
LOCAL_IFACE=eth0
INET_IFACE=wlan0
INET_ADDRESS=192.168.178.127
# Flush the tables
$IPT -F INPUT
$IPT -F OUTPUT
$IPT -F FORWARD
$IPT -t nat -P PREROUTING ACCEPT
$IPT -t nat -P POSTROUTING ACCEPT
$IPT -t nat -P OUTPUT ACCEPT
# Allow forwarding packets:
$IPT -A FORWARD -p ALL -i $LOCAL_IFACE -o $INET_IFACE -j ACCEPT
$IPT -A FORWARD -i $INET_IFACE -o $LOCAL_IFACE -m state --state ESTABLISHED,RELATED -j ACCEPT
# Packet masquerading
$IPT -t nat -A POSTROUTING -o $INET_IFACE -j SNAT --to-source $INET_ADDRESS
$IPT -A PREROUTING -t nat -i $INET_IFACE -p tcp --dport 8080 -j DNAT --to 192.168.2.12:80
$IPT -A FORWARD -p tcp -d 192.168.2.12 --dport 80 -j ACCEPT
Code: Select all
# Include files from /etc/network/interfaces.d:
source-directory /etc/network/interfaces.d
auto lo
iface lo inet loopback
allow-hotplug eth0
iface eth0 inet static
address 192.168.2.1
network 192.168.2.0
netmask 255.255.255.0
broadcast 192.168.2.255
gateway 192.168.2.1
allow-hotplug wlan0
iface wlan0 inet static
address 192.168.178.127
network 192.168.178.0
netmask 255.255.255.0
broadcast 192.168.178.255
gateway 192.168.178.1
wpa-ssid "MYSSID"
wpa-psk "MYPASSWORD"
pre-up iptables-restore < /etc/network/iptables
Andre