"Urgent assistance :" Maps : iptables Senat
	ES system : Windows 2003 Server IP:222.*.*.* 1.WEB 2.mail server systems : Covert ES3 eth0:223.*.*.* eth1:172.16.33.2 3. Network storage server system : Windows 2003 ES eth0:10.*.*.* eth1:172.16.33.1 4.mail server and network storage server eth1 eth1 even through cross-straight I am prepared to write a batch on the Web Server automatically will be placed at the external Web server, mail server through important data to map the internal storage backup server, mail server wants the 7001 port mapping to network storage server on the ftp, has been previously written on the mail gateway, and only a 22,80,25,110,3306 port and acquiesce INPUT is the DROP. Create a network storage server on the ftp, the objectives are : the Web Server, the browser used to fight : ftp://223.*.*.*:7001 successful landing on the ftp list of network storage server inside. cuteftp software or connected with the 7001 223.*.*.* port can connect to the network storage 172.16.33.1 ftp upswing. Please help me enthusiastic friends, how to write iptables, thank you!
	Re : "urgent assistance :" Maps : iptables Senat
	Iptables-A PREROUTING-t Senat -i eth0-p tcp --dport 7001 -j DNAT --to 172.16.33.1:21 But this will be a problem, Server for data transmission to the client company will open random port, which is being DROP reason. Client passive mode must be allowed to switch off for 20-port link Client Server transparencies. Ip masq ftp客户端 because you do not, it is a viable option. Mail machine if opened SNAT should not be any problem bars.
	Re : "urgent assistance :" Maps : iptables Senat
	DNAT and SNAT have done, would be useless to find a lot of information, never realized, too depressed, and I doubt I have to question the character, : - (
	Re : "urgent assistance :" Maps : iptables Senat
	First in 7001 for the data do --dport PREROUTING DNAT put into storage server IP. SNAT in POSTROUTING again, the source ip into a mail server IP. Because you did not see the rule, the only talk so much.