DNAT Mapping onto multiple ports?
Harald Welte
laforge@gnumonks.org
Sat, 23 Sep 2000 16:34:53 +0200
On Fri, Sep 22, 2000 at 03:07:14PM -0400, Evan Jones wrote:
> Short version:
>
> Are these two rules equivalent? Why/Why not?
> iptables -t nat -A PREROUTING -j DNAT --to-destination :2000-3000
>
> iptables -t nat -A PREROUTING -j DNAT --to-destination :2000
Why would You ever want to do DNAT to more than one port? Where should
the stack know from, which packet to DNAT to which port?
I don't see why anybody may want to do this, and I don't think that this
is supported in any way by netfilter.
> Evan Jones - ejones@netwinder.org
--
Live long and prosper
- Harald Welte / laforge@gnumonks.org http://www.gnumonks.org
============================================================================
GCS/E/IT d- s-: a-- C+++ UL++++$ P+++ L++++$ E--- W- N++ o? K- w--- O- M-
V-- PS+ PE-- Y+ PGP++ t++ 5-- !X !R tv-- b+++ DI? !D G+ e* h+ r% y+(*)