From: "Mardaga Stephan" <smardaga@brutele.be>
To: netfilter@lists.netfilter.org
Subject: Re: Masquerade don't masquerade
Date: Sun, 29 Aug 2004 13:47:16 +0200 [thread overview]
Message-ID: <003901c48dbe$e7e16eb0$c6ea44d4@famille> (raw)
In-Reply-To: 004d01c48adb$5b9d4180$c6ea44d4@famille
Masquerade is working now.
The rule is to stop networking beforee changes to nat iptables and after
networking start.
This rule don't need to be applied for tthee filter iptables.
Thanks everyone for the help.
Stephan
----- Original Message -----
From: "Mardaga Stephan" <smardaga@brutele.be>
To: <netfilter@lists.netfilter.org>
Sent: Wednesday, August 25, 2004 9:40 PM
Subject: Re: Masquerade don't masquerade
> From: "Jason Opperisano" <Jopperisano@alphanumeric.com>
>
>
> > iptables release 1.2.6a
> > Linux 2.4.18-bf2.4 #1 Son Apr 14 09:53:28 CEST 2002 i686 unknown
> >
> > Chain PREROUTING (policy ACCEPT)
> > target prot opt source destination
> >
> > Chain POSTROUTING (policy ACCEPT)
> > target prot opt source destination
> > LOG all -- anywhere anywhere LOG level
> > warning
> > MASQUERADE all -- 192.168.1.0/24 anywhere
> > LOG all -- anywhere anywhere LOG level
> > warning
> >
> > Chain OUTPUT (policy ACCEPT)
> > target prot opt source destination
> >
> > Any help and/or suggestions will be accepted gratefully.
>
> blind gues would be that you have the wrong interface specified in your
> MASQUERADE rule. can you post the output of "iptables -t nat -vnL"
instead
> of just "-nL" so we can see the in/out interfaces.
>
> here are :
>
> Chain PREROUTING (policy ACCEPT 643 packets, 82862 bytes)
> pkts bytes target prot opt in out source
> destination
>
> Chain POSTROUTING (policy ACCEPT 61 packets, 18460 bytes)
> pkts bytes target prot opt in out source
> destination
> 55 16492 LOG all -- * * 0.0.0.0/0
> 0.0.0.0/0 LOG flags 0 level 4
> 0 0 MASQUERADE all -- * eth0 192.168.1.0/24
> 0.0.0.0/0
> 55 16492 LOG all -- * * 0.0.0.0/0
> 0.0.0.0/0 LOG flags 0 level 4
>
> Chain OUTPUT (policy ACCEPT 61 packets, 18460 bytes)
> pkts bytes target prot opt in out source
> destination
>
> Stef
>
>
next prev parent reply other threads:[~2004-08-29 11:47 UTC|newest]
Thread overview: 6+ messages / expand[flat|nested] mbox.gz Atom feed top
2004-08-25 19:18 Masquerade don't masquerade Jason Opperisano
2004-08-25 19:40 ` Mardaga Stephan
2004-08-29 11:47 ` Mardaga Stephan [this message]
-- strict thread matches above, loose matches on Subject: below --
2004-08-25 19:05 Mardaga Stephan
2004-08-25 19:18 ` George Alexandru Dragoi
2004-08-25 19:36 ` Mardaga Stephan
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to='003901c48dbe$e7e16eb0$c6ea44d4@famille' \
--to=smardaga@brutele.be \
--cc=netfilter@lists.netfilter.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.