REDIRECT

[Henrik Nordstrom]

On Mon, 13 Dec 2004, r00t wrote:

> Ok, but if i use this:
>
> -A PREROUTING -p tcp -j QUEUE
> -A PREROUTING -i eth1 -p tcp -m tcp --dport 80 -j REDIRECT --to-ports 3128

You can't. QUEUE terminates the PREROUTING hook.

You need to queue before nat PREROUTING if you want to apply NAT rules on 
packets after QUEUE reinjects them to the kernel, i.e. from mangle or raw 
tables.

Regards
Henrik