Connection refused trying to DNAT

ppulham · September 25, 2020, 6:04pm

I have 3 interfaces:

WAN (eth0)
DMZ (eth1)
LAN (eth2)

I’m trying to NAT from WAN to a server in DMZ. This is the nat rule:

     rule 107 {
         destination {
             port 80
         }
         inbound-interface eth0
         log
         protocol tcp
         translation {
             address x.x.x.x
         }
     }

Ive removed all the firewall rules from the WAN and DMZ interfaces and I still get connection refused.

I can ping the DMZ machine fine from the router.

Am I missing something from the NAT rule?

Viacheslav · September 25, 2020, 6:28pm

From VyOS host

sudo curl http://x.x.x.x

ppulham · September 25, 2020, 7:03pm

doh!

Thanks for that, I got connection refused which proved it was the target machine.

system · September 27, 2020, 7:03pm

This topic was automatically closed 2 days after the last reply. New replies are no longer allowed.