I have a web server into an internat net using ebox like gateway, I'm trying to configure access from external nets to this server using port redirection in the ebox machine. The problem is that the server doesn't receive any petition, if I do the redirection agaisnt a public ip machine it works perfect. This problem occurs only for port 80, ie, internal to that server ebox has FTP services and redirect works correctly What are I doing badly?
My version : ebox 1.2.3
The following is the output of the command iptables-t nat-L-n-v:
Chain PREROUTING (policy ACCEPT 748K packets, 77M bytes)
pkts bytes target prot opt in out source destination
1233 72824 premodules all -- * * 0.0.0.0/0 0.0.0.0/0
4 208 DNAT tcp -- eth2 * 0.0.0.0/0 1X.X.X.4 tcp dpt:80 to:192.XXX.X.250:80
0 0 DNAT tcp -- eth2 * 0.0.0.0/0 1X.X.X.4 tcp dpt:3390 to:192.XXX.X.250:3389
2 96 DNAT tcp -- eth1 * 0.0.0.0/0 200.XXX.XXX.2XX tcp dpt:3389 to:192.XXX.X.253:3389
0 0 DNAT tcp -- eth2 * 0.0.0.0/0 1X.X.X.4 tcp dpt:21 to:192.XXX.X.253:21
0 0 DNAT tcp -- eth1 * 0.0.0.0/0 200.XXX.XXX.2XX tcp dpt:21 to:192.XXX.X.253:21
0 0 DNAT tcp -- eth2 * 0.0.0.0/0 1X.X.X.2 tcp dpt:3390 to:192.XXX.X.250:3389
0 0 DNAT tcp -- eth2 * 0.0.0.0/0 1X.X.X.2 tcp dpt:21 to:192.XXX.X.253:21
0 0 DNAT tcp -- eth2 * 0.0.0.0/0 1X.X.X.4 tcp dpt:20 to:192.XXX.X.253:20
0 0 DNAT tcp -- eth2 * 0.0.0.0/0 1X.X.X.2 tcp dpt:20 to:192.XXX.X.253:20
0 0 DNAT tcp -- eth1 * 0.0.0.0/0 200.XXX.XXX.2XX tcp dpt:80 to:192.XXX.X.250:80
0 0 DNAT tcp -- eth2 * 0.0.0.0/0 1X.X.X.4 tcp dpt:3391 to:192.XXX.X.251:3389
0 0 DNAT tcp -- eth2 * 0.0.0.0/0 1X.X.X.2 tcp dpt:3389 to:192.XXX.X.253:3389
0 0 DNAT tcp -- eth2 * 0.0.0.0/0 1X.X.X.2 tcp dpt:80 to:192.XXX.X.250:80
0 0 DNAT tcp -- eth1 * 0.0.0.0/0 200.XXX.XXX.2XX tcp dpt:20 to:192.XXX.X.253:20
2 104 DNAT tcp -- eth2 * 0.0.0.0/0 1X.X.X.4 tcp dpt:3389 to:192.XXX.X.253:3389
0 0 DNAT tcp -- eth1 * 0.0.0.0/0 200.XXX.XXX.2XX tcp dpt:3390 to:192.XXX.X.250:3389
0 0 DNAT tcp -- eth2 * 0.0.0.0/0 1X.X.X.2 tcp dpt:3391 to:192.XXX.X.251:3389
0 0 DNAT tcp -- eth1 * 0.0.0.0/0 200.XXX.XXX.2XX tcp dpt:3391 to:192.XXX.X.251:3389
Chain POSTROUTING (policy ACCEPT 2649K packets, 166M bytes)
pkts bytes target prot opt in out source destination
754 46171 postmodules all -- * * 0.0.0.0/0 0.0.0.0/0
1 48 SNAT all -- * eth1 !200.XXX.XXX.2XX 0.0.0.0/0 to:200.XXX.XXX.2XX
42 2544 SNAT all -- * eth2 !1X.X.X.2 0.0.0.0/0 to:1X.X.X.2
Chain OUTPUT (policy ACCEPT 2774K packets, 174M bytes)
pkts bytes target prot opt in out source destination
Chain postmodules (1 references)
pkts bytes target prot opt in out source destination
Chain premodules (1 references)
pkts bytes target prot opt in out source destination
0 0 REDIRECT tcp -- eth0 * 192.XXX.X.251 !192.XXX.X.252 tcp dpt:80 redir ports 3129
0 0 REDIRECT tcp -- eth0 * 192.XXX.X.250 !192.XXX.X.252 tcp dpt:80 redir ports 3129
323 15504 REDIRECT tcp -- eth0 * 192.XXX.X.253 !192.XXX.X.252 tcp dpt:80 redir ports 3129
0 0 REDIRECT tcp -- eth0 * 192.XXX.X.19 !192.XXX.X.252 tcp dpt:80 redir ports 3128
0 0 REDIRECT tcp -- eth0 * 192.XXX.X.163 !192.XXX.X.252 tcp dpt:80 redir ports 3128
0 0 REDIRECT tcp -- eth0 * 192.XXX.X.169 !192.XXX.X.252 tcp dpt:80 redir ports 3128
0 0 REDIRECT tcp -- eth0 * 192.XXX.X.176 !192.XXX.X.252 tcp dpt:80 redir ports 3128
0 0 REDIRECT tcp -- eth0 * 192.XXX.X.214 !192.XXX.X.252 tcp dpt:80 redir ports 3128
0 0 REDIRECT tcp -- eth0 * 192.XXX.X.94 !192.XXX.X.252 tcp dpt:80 redir ports 3128
0 0 REDIRECT tcp -- eth0 * 192.XXX.X.106 !192.XXX.X.252 tcp dpt:80 redir ports 3128
0 0 REDIRECT tcp -- eth0 * 192.XXX.X.38 !192.XXX.X.252 tcp dpt:80 redir ports 3128
0 0 REDIRECT tcp -- eth0 * 192.XXX.X.162 !192.XXX.X.252 tcp dpt:80 redir ports 3128
0 0 REDIRECT tcp -- eth0 * 192.XXX.X.86 !192.XXX.X.252 tcp dpt:80 redir ports 3128
0 0 REDIRECT tcp -- eth0 * 192.XXX.X.201 !192.XXX.X.252 tcp dpt:80 redir ports 3128
0 0 REDIRECT tcp -- eth0 * 192.XXX.X.63 !192.XXX.X.252 tcp dpt:80 redir ports 3128
0 0 REDIRECT tcp -- eth0 * 192.XXX.X.56 !192.XXX.X.252 tcp dpt:80 redir ports 3128
0 0 REDIRECT tcp -- eth0 * 192.XXX.X.158 !192.XXX.X.252 tcp dpt:80 redir ports 3128
0 0 REDIRECT tcp -- eth0 * 192.XXX.X.36 !192.XXX.X.252 tcp dpt:80 redir ports 3128
0 0 REDIRECT tcp -- eth0 * 192.XXX.X.91 !192.XXX.X.252 tcp dpt:80 redir ports 3129
0 0 REDIRECT tcp -- eth0 * 192.XXX.X.77 !192.XXX.X.252 tcp dpt:80 redir ports 3129
0 0 REDIRECT tcp -- eth0 * 192.XXX.X.43 !192.XXX.X.252 tcp dpt:80 redir ports 3129
0 0 REDIRECT tcp -- eth0 * 192.XXX.X.193 !192.XXX.X.252 tcp dpt:80 redir ports 3129
0 0 REDIRECT tcp -- eth0 * 192.XXX.X.32 !192.XXX.X.252 tcp dpt:80 redir ports 3129
0 0 REDIRECT tcp -- eth0 * 0.0.0.0/0 !192.XXX.X.252 tcp dpt:80 redir ports 3129