[Bug 1105] masquerade fully broken when no prerouting chain is created
bugzilla-daemon at netfilter.org
bugzilla-daemon at netfilter.org
Tue Aug 15 23:43:46 CEST 2017
https://bugzilla.netfilter.org/show_bug.cgi?id=1105
Maxime de Roucy <maxime.deroucy at gmail.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |maxime.deroucy at gmail.com
--- Comment #1 from Maxime de Roucy <maxime.deroucy at gmail.com> ---
I think it's explicitly mentioned in the wiki :
https://wiki.nftables.org/wiki-nftables/index.php/Performing_Network_Address_Translation_(NAT)#Masquerading
> Note that:
> masquerade only makes sense from postrouting chain of NAT type.
> **you still have to add the prerouting nat chain, since this translate traffic in the reply direction.**
I don't know if it should be classified has a bug… though I am not a nftable
dev.
--
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20170815/77fab7e1/attachment.html>
More information about the netfilter-buglog
mailing list