|
发表于 2005-6-21 06:07:51
|
显示全部楼层
我不?得 "?奇私服" 指的是什?? ("私服"是 Server 的意思??)
先?定 7000,7100,7200 是 TCP or UDP, 如果你不?定, 在 m0n0wall 上 NAT 就把?者 TCP/UDP ??到 LAN 端的主?, 同?? m0n0wall ?你自?新增 firewall rule.
另一?要注意的地方是: LAN 端的??要???台 "?奇私服" ?, 我猜想你??是直接指向 m0n0wall WAN IP, 但是??在 m0n0wall ?有??. ??解法??考之前的帖子.
引一段 FAQ ??考:
------------------------
13.3. Why isn't it possible to access NATed services by the public IP address from LAN?
Problem. It is not possible to access NATed services using the public (WAN) IP address from within LAN (or an optional network). Example: you've got a server in your LAN behind m0n0wall and added a NAT/filter rule to allow external access to its HTTP port. While you can access it just fine from the Internet, you cannot access http://your-external-ip/ from within your LAN.
Reason. This is due to a limitation in ipfilter/ipnat (which are used in m0n0wall). Read the ipfilter FAQ for details. m0n0wall does not (and probably will not) include a "bounce" utility.
Solution. If you use m0n0wall's built-in DNS forwarder for your LAN clients, you can add one or more overrides so that they will get the internal (LAN) IP address of your server instead of the external one, while external clients still get the real/public IP address.
Note
This will only work if you use m0n0wall as the primary DNS server on your LAN hosts. If you use another DNS server, you need to use its functionality to resolve that host to the appropriate private IP. See your DNS server documentation for more information.
------------------- |
|