Is it possible to use computer name in iptables

iptables computer-name
Matej picture Matej · May 30, 2012 · Viewed 12.5k times · Source

I want to redirect some port from WAN to my laptop. The problem is, that the laptop has different IP on wireless as on cable LAN. Is there a way to use the computer name in iptables?

Iptables port forwarding rule (using IPs) should be:

iptables -t nat -A PREROUTING -p tcp -d 192.168.102.37 --dport 422 -j DNAT --to 192.168.102.37:22

Can I write something like

iptables -t nat -A PREROUTING -p tcp -d mycomputername --dport 422 -j DNAT --to mycomputername:22

and the computer name will be resolved in current IP?

Thank you.

Answer

davidgo picture davidgo · May 30, 2012

No - Attempting this gives a "Bad IP address" (at least in v 1.4.7)

It appears that iptables does not like the destination address and port combination. (You can get away with specifying a host name for a simple IP, but not, it seems, when you append a port).

The IPTables manual also recommends against specifying a domain name.

Related questions

How can I remove specific rules from iptables?

I am hosting special HTTP and HTTPS services on the ports 8006 and 8007 respectively. I use iptables to "activate" the server; i.e. to route the incoming HTTP and HTTPS ports: iptables -A INPUT -i eth0 -p tcp --dport 80 -j ACCEPT …

Read More
How can i use iptables on centos 7?

I installed CentOS 7 with minimal configuration (os + dev tools). I am trying to open 80 port for httpd service, but something wrong with my iptables service ... what's wrong with it? What am I doing wrong? # ifconfig/sbin/service iptables save bash: …

Read More
Is there a way for non-root processes to bind to "privileged" ports on Linux?

It's very annoying to have this limitation on my development box, when there won't ever be any users other than me. I'm aware of the standard workarounds, but none of them do exactly what I want: authbind (The version in …

Read More