Bridge DNAT

curby . curby.public at gmail.com
Fri Jul 22 01:26:58 CEST 2005


On 7/21/05, Jan Engelhardt <jengelh at linux01.gwdg.de> wrote:
> The redirection works as expected when someone from the internet<eth0>
> connects to the server.
> But within the internal network, the following happens:
>   .44.2 telnets to .44.1:9000
>   .44.1 rewrites the destination and sends it to .44.3 (SYN)
>   .44.3 replies with SYN ACK
>   .44.2 replies with RST - it does not know the connection

This looks like the NAT onto same network problem, which the howto
recommends you take care of using SNAT in addition to DNAT.  Does that
work?

http://www.netfilter.org/documentation/HOWTO//NAT-HOWTO-10.html

> 
> 
> What have I done wrong? Or is this just that the bridge code does not fully
> handle layer3 DNAT?
> 
> 
> Jan Engelhardt
> --
> 
>



More information about the netfilter mailing list