Re: ipnat and IPv6

Elmar Knipp · ‎02-01-2013

I have successfully configured the redirection of a port from a privileged to an unprivileged port. The background is that I want to run a Tomcat without root access. Here is my rule:

rdr lan1 195.2.3.4/32 port 80 -> 195.2.3.4 port 40442

Now I have to configure a similar rule for dual stack with IPv6. The rule

rdr lan1 2a01:1:2:3::2c/128 port 80 -> 2a01:1:2:3::2c port 40442

only results in a syntax error. I could not find any hint in the manuals.

Laurent Menase · ‎02-05-2013

HP-UX IPFilter V18.0 Administrator Guide
HP-UX 11i v3

http://bizsupport1.austin.hp.com/bc/docs/support/SupportManual/c02752836/c02752836.pdf

6 Configuring and loading NAT rules
6.1 NAT rules configuration file
IPFilter loads and evaluates NAT rules separately from filter rules. Do not configure NAT rules in
the same file with filter rules. The default name for the HP-UX IPFilter NAT rules file is /etc/opt/
ipf/ipnat.conf. To specify an alternate NAT rules file name, set the IPNAT_CONF parameter
in the IPFilter startup file, /etc/rc.config.d/ipfconf.
To load NAT rules, use the ipnat utility. For more information, see Section 6.6 (page 48). See
also, Section 3.9 (page 30).
NOTE: NAT rules are not supported with IPv6 addresses or interfaces.

May be an other solution would be to use FineGrainedPriviledge PRIV_NETPRIVPORT

http://bizsupport2.austin.hp.com/bc/docs/support/SupportManual/c01944073/c01944073.pdf

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Discussions

Forums

Discussions

Forums

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

Re: ipnat and IPv6

ipnat and IPv6

Re: ipnat and IPv6