iptables dnat to loopback
David Cannings
lists@edeca.net
Sun, 8 Aug 2004 09:41:38 +0100
On Sunday 08 August 2004 07:17, Damian Gatabria wrote:
> :o( no luck.
> I even tried -F ing INPUT, FORWARD, OUTPUT, PREROUTING and POSTROUTING
> before adding the rule, (all policies set to ACCEPT) and still no luck!
> Forwarding is enabled,
> net.ipv4.conf.all.forwarding = 1
> net.ipv4.ip_forward = 1
> and still the packets are going nowhere... however giving
> the loopback an alias with an ip address of, say, 200.136.136.136
> works... so why can't I route to 127.0.0.x? Is there anything
> else I should check/add?
You can't send packets from non 127/8 addresses to 127/8. The kernel
filters them out and drops them as it considers them "martians".
David