Masquerade don't masquerade
Mardaga Stephan
smardaga at brutele.be
Sun Aug 29 13:47:16 CEST 2004
Masquerade is working now.
The rule is to stop networking beforee changes to nat iptables and after
networking start.
This rule don't need to be applied for tthee filter iptables.
Thanks everyone for the help.
Stephan
----- Original Message -----
From: "Mardaga Stephan" <smardaga at brutele.be>
To: <netfilter at lists.netfilter.org>
Sent: Wednesday, August 25, 2004 9:40 PM
Subject: Re: Masquerade don't masquerade
> From: "Jason Opperisano" <Jopperisano at alphanumeric.com>
>
>
> > iptables release 1.2.6a
> > Linux 2.4.18-bf2.4 #1 Son Apr 14 09:53:28 CEST 2002 i686 unknown
> >
> > Chain PREROUTING (policy ACCEPT)
> > target prot opt source destination
> >
> > Chain POSTROUTING (policy ACCEPT)
> > target prot opt source destination
> > LOG all -- anywhere anywhere LOG level
> > warning
> > MASQUERADE all -- 192.168.1.0/24 anywhere
> > LOG all -- anywhere anywhere LOG level
> > warning
> >
> > Chain OUTPUT (policy ACCEPT)
> > target prot opt source destination
> >
> > Any help and/or suggestions will be accepted gratefully.
>
> blind gues would be that you have the wrong interface specified in your
> MASQUERADE rule. can you post the output of "iptables -t nat -vnL"
instead
> of just "-nL" so we can see the in/out interfaces.
>
> here are :
>
> Chain PREROUTING (policy ACCEPT 643 packets, 82862 bytes)
> pkts bytes target prot opt in out source
> destination
>
> Chain POSTROUTING (policy ACCEPT 61 packets, 18460 bytes)
> pkts bytes target prot opt in out source
> destination
> 55 16492 LOG all -- * * 0.0.0.0/0
> 0.0.0.0/0 LOG flags 0 level 4
> 0 0 MASQUERADE all -- * eth0 192.168.1.0/24
> 0.0.0.0/0
> 55 16492 LOG all -- * * 0.0.0.0/0
> 0.0.0.0/0 LOG flags 0 level 4
>
> Chain OUTPUT (policy ACCEPT 61 packets, 18460 bytes)
> pkts bytes target prot opt in out source
> destination
>
> Stef
>
>
More information about the netfilter
mailing list