[Bug 1117] Table ipv4-nat prerouting dnat doesn't accept dest IP:PORT
bugzilla-daemon at netfilter.org
bugzilla-daemon at netfilter.org
Fri Feb 3 14:19:04 CET 2017
https://bugzilla.netfilter.org/show_bug.cgi?id=1117
--- Comment #1 from Jan <jan at purepeople.be> ---
with kernel 4.4 (std ubuntu) and nftables 0.5
---------------
root at ctrl-ma-g8-1:~# nft add rule ip nat prerouting iif public tcp dport 9999
dnat 10.108.2.123:999
root at ctrl-ma-g8-1:~# nft list ruleset
table ip nat {
chain prerouting {
type nat hook prerouting priority -150; policy accept;
iif public tcp dport 9999 dnat 10.108.2.123:999
}
chain postrouting {
type nat hook postrouting priority -150; policy accept;
oif public ip saddr 10.108.2.0/24 masquerade
ip saddr 172.17.0.0/16 masquerade
}
}
----------------
things work....
IIRC on 4.8.11, things work too
--
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20170203/f22829fc/attachment.html>
More information about the netfilter-buglog
mailing list