http://guadec.powercraft.nl/trac/guadec/ticket/7

external IP-address to the reach appliances will be 145.52.240.2 or 145.52.240.3

established incomming and outgoing trafic will not be droped!

reserved bandwidth 3Mbps to 5Mbps, we have more if needed.

appliance01:
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 223 -j DNAT --to-destination 192.168.30.10:22
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8600 -j DNAT --to-destination 192.168.30.10:8600
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8601 -j DNAT --to-destination 192.168.30.10:8601
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8602 -j DNAT --to-destination 192.168.30.10:8602
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8603 -j DNAT --to-destination 192.168.30.10:8603
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8604 -j DNAT --to-destination 192.168.30.10:8604
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8605 -j DNAT --to-destination 192.168.30.10:8605
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8606 -j DNAT --to-destination 192.168.30.10:8606
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8607 -j DNAT --to-destination 192.168.30.10:8607
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8608 -j DNAT --to-destination 192.168.30.10:8608
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8609 -j DNAT --to-destination 192.168.30.10:8609
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8610 -j DNAT --to-destination 192.168.30.10:8610

appliance02:
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 224 -j DNAT --to-destination 192.168.30.11:22
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8700 -j DNAT --to-destination 192.168.30.11:8700
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8701 -j DNAT --to-destination 192.168.30.11:8701
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8702 -j DNAT --to-destination 192.168.30.11:8702
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8703 -j DNAT --to-destination 192.168.30.11:8703
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8704 -j DNAT --to-destination 192.168.30.11:8704
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8705 -j DNAT --to-destination 192.168.30.11:8705
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8706 -j DNAT --to-destination 192.168.30.11:8706
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8707 -j DNAT --to-destination 192.168.30.11:8707
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8708 -j DNAT --to-destination 192.168.30.11:8708
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8709 -j DNAT --to-destination 192.168.30.11:8709
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8710 -j DNAT --to-destination 192.168.30.11:8710

appliance03:
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 225 -j DNAT --to-destination 192.168.30.12:22
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8800 -j DNAT --to-destination 192.168.30.12:8800
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8801 -j DNAT --to-destination 192.168.30.12:8801
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8802 -j DNAT --to-destination 192.168.30.12:8802
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8803 -j DNAT --to-destination 192.168.30.12:8803
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8804 -j DNAT --to-destination 192.168.30.12:8804
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8805 -j DNAT --to-destination 192.168.30.12:8805
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8806 -j DNAT --to-destination 192.168.30.12:8806
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8807 -j DNAT --to-destination 192.168.30.12:8807
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8808 -j DNAT --to-destination 192.168.30.12:8808
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8809 -j DNAT --to-destination 192.168.30.12:8809
-A PREROUTING -i ${WAN01} -p tcp -m tcp --dport 8810 -j DNAT --to-destination 192.168.30.12:8810

appliance01:
192.168.30.10/24 gateway 192.168.30.1

appliance02:
192.168.30.11/24 gateway 192.168.30.1

appliance03:
192.168.30.12/24 gateway 192.168.30.1

ntp:
local ntp server on 192.168.30.1 and outgoing trafic is not blocked
