外网访问腾讯云redis内网服务的方法

centos:6.* iptables

本机（192.168.1.7）的6198 转发到172.16.0.11的6379

[root@kvm-server conf]# iptables -t nat -A PREROUTING -p tcp -m tcp --dport 6198 -j DNAT --to-destination 172.16.0.11:6379

[root@kvm-server conf]# iptables -t nat -A POSTROUTING -d 172.16.0.11/32 -p tcp -m tcp --sport 6379 -j SNAT --to-source 192.168.1.7

[root@kvm-server conf]# iptables -t filter -A INPUT -p tcp -m state --state NEW -m tcp --dport 6198 -j ACCEPT

centos:7.* firewall

firewall-cmd --query-masquerade

firewall-cmd --add-masquerade

# 将80端口的流量转发至8080

firewall-cmd --add-forward-port=port=80:proto=tcp:toport=8080

# 将80端口的流量转发至

firewall-cmd --add-forward-port=port=80:proto=tcp:toaddr=192.168.1.0.1192.168.0.1

# 将80端口的流量转发至192.168.0.1的8080端口

firewall-cmd --add-forward-port=port=6198:proto=tcp:toaddr=172.16.0.11:toport=6379