centos7配置端口转发
钢翼
编程
https://blog.csdn.net/weixin_41423450/article/details/92768221
#开启系统路由模式功能
echo net.ipv4.ip_forward=1>>/etc/sysctl.conf
#运行这个命令会输出上面添加的那一行信息,意思是使内核修改生效
sysctl -p
#开启firewalld
systemctl start firewalld
#开启端口监听tcp请求
firewall-cmd --zone=public --add-port=8080/tcp --permanent
firewall-cmd --zone=public --add-port=3478/tcp --permanent
firewall-cmd --zone=public --add-port=3478/udp --permanent
firewall-cmd --zone=public --add-port=5349/tcp --permanent
firewall-cmd --zone=public --add-port=49152-65200/udp --permanent
#设置IP地址伪装
firewall-cmd --add-masquerade --permanent
#设置端口映射
firewall-cmd --add-forward-port=port=8080:proto=tcp:toaddr=203.205.128.15:toport=8080 --permanent
firewall-cmd --add-forward-port=port=3478:proto=tcp:toaddr=203.205.128.15:toport=3478 --permanent
firewall-cmd --add-forward-port=port=3478:proto=udp:toaddr=203.205.128.15:toport=3478 --permanent
firewall-cmd --add-forward-port=port=5349:proto=tcp:toaddr=203.205.128.15:toport=5349 --permanent
firewall-cmd --add-forward-port=port=49152-65200:proto=udp:toaddr=203.205.128.15:toport=49152-65200 --permanent
firewall-cmd --add-masquerade --permanent
#重启firewall
firewall-cmd --reload
#列出所有信息
firewall-cmd --list-ports