iptables -I INPUT -i eno1 -p tcp --dport 2200:2299 -j ACCEPT
iptables -I FORWARD -p tcp --dport 22 -j ACCEPT
for i in {1…9}; do iptables -t nat -I PREROUTING -d 10.20.25.154 -p tcp -m tcp --dport 220
i
−
j
D
N
A
T
−
−
t
o
−
d
e
s
t
i
n
a
t
i
o
n
192.168.122.20
i -j DNAT --to-destination 192.168.122.20
i−jDNAT−−to−destination192.168.122.20i:22; done
for i in {20…30}; do iptables -t nat -I PREROUTING -d 10.20.25.154 -p tcp -m tcp --dport 22
i
−
j
D
N
A
T
−
−
t
o
−
d
e
s
t
i
n
a
t
i
o
n
192.168.122.2
i -j DNAT --to-destination 192.168.122.2
i−jDNAT−−to−destination192.168.122.2i:22; done
for i in {50…55}; do iptables -t nat -I PREROUTING -d 10.20.25.154 -p tcp -m tcp --dport 22
i
−
j
D
N
A
T
−
−
t
o
−
d
e
s
t
i
n
a
t
i
o
n
192.168.122.2
i -j DNAT --to-destination 192.168.122.2
i−jDNAT−−to−destination192.168.122.2i:22; done
主机直接ssh到服务器的虚拟机使用iptables方法
最新推荐文章于 2024-06-21 08:04:17 发布