Mail Server Behind IPTABLES

Jason Opperisano opie at 817west.com
Wed Sep 1 20:25:23 CEST 2004


On Wed, 2004-09-01 at 14:19, Jason Opperisano wrote:
> 
>         iptables -t nat -I POSTROUTING -p tcp -o eth0 \
>           -d 192.168.2.1 --dport 25 \
>           -j SNAT --to-destination 192.168.2.2
> 
> is correct, syntax-wise.  whether it accomplishes what you want;
> functionality-wise, is another question...
> 
> -j

damn copy & paste...  of course "--to-destination" makes no sense with
SNAT either:

        iptables -t nat -I POSTROUTING -p tcp -o eth0 \
          -d 192.168.2.1 --dport 25 \
          -j SNAT --to-source 192.168.2.2

-j

=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~
I was in Vegas last week. I was at the roulette table, having a lengthy
argument about what I considered an Odd number. -- Steven Wright
=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~




More information about the netfilter mailing list