From: netfilter_user <netfilter_user@o2.pl>
To: Alistair Tonner <Alistair@nerdnet.ca>
Cc: SaVaGE <pc-secure@home.nl>, netfilter@lists.netfilter.org
Subject: Re[4]: PREROUTING
Date: Tue, 29 Apr 2003 17:59:20 +0200 [thread overview]
Message-ID: <11611759128.20030429175920@o2.pl> (raw)
In-Reply-To: <200304291049.38735.Alistair@nerdnet.ca>
Hello Alistair,
Tuesday, April 29, 2003, 4:49:38 PM, you wrote:
AT> On April 29, 2003 08:53 am, netfilter_user wrote:
>> Hello SaVaGE,
>>
>> Tuesday, April 29, 2003, 9:49:10 AM, you wrote:
>>
>> S> Op dinsdag 29 april 2003 09:23, schreef netfilter_user:
>> >> Hello everyone,
>> >>
>> >> this is my problem:
>> >> My LAN is connected to Internet via Linux machine with 2 interface (
>> >> ppp0 - for internet and eth1 for local net). I need to connect from
>> >> local host, service that is running on port 23073 and 23083 UDP in
>> >> internet. For this i wrote afew rules with PREROUTING but when I start
>> >> script with rules below i receive:
>> >>
>> >> Bad argument `PREROUTING'
>> >> Try `iptables -h' or 'iptables --help' for more information.
>> >> Bad argument `PREROUTING'
>> >> Try `iptables -h' or 'iptables --help' for more information.
>> >>
>> >>
>> >> iptables -t nat -A PREROUTING -p udp -d 80.50.60.185 --dport 23073 -j
>> >> DNAT --to-destination 192.168.1.2 iptables -t nat -A PREROUTING -p udp
>> >> -d 80.50.60.185 --dport 23083 -j DNAT --to-destination 192.168.1.2
>> >>
>> >> iptables -A FORWARD -p udp -d 192.168.1.2 --dport 23073 -j ACCEPT
>> >> iptables -A FORWARD -p udp -d 192.168.1.2 --dport 23083 -j ACCEPT
>> >>
>> >> What maybe a reason of this msg?
>> >> Im using slackware 8.1 with iptables 1.2.6a
>>
>> S> This behaviour is correct NATting is done on the POSTROUTING table !!!!
>>
>>
>> S> Pascal (PC-Secure Dutch security service)
>>
>> ammm....im afraid its not correct because I have received msg like this:
>>
>> Bad argument `PREROUTING'
>> Try `iptables -h' or 'iptables --help' for more information.
>> Bad argument `PREROUTING'
>> Try `iptables -h' or 'iptables --help' for more information.
>>
>> ...its not correct in my newbe opinion.
AT> Actually DNAT is acceptable in the PREROUTING chain.
AT> change the --to-destination option to
AT> --to ip.ad.dr.ess:portnum
AT> or
AT> --to ip.ad.dre.ss
Now I have to excuse everyone who answer on my mail... it is ofcourse
my fault. I made mistake and had written "iptables -t nat
PREROUTING..." and I should write like this "iptables -t nat -A
PREROUTING...". I have forgotten about "-A". Forgive me plz and thx
for your time and attention.
--
Best regards,
mailto:netfilter_user@o2.pl
prev parent reply other threads:[~2003-04-29 15:59 UTC|newest]
Thread overview: 8+ messages / expand[flat|nested] mbox.gz Atom feed top
2003-04-29 7:23 PREROUTING netfilter_user
2003-04-29 7:49 ` PREROUTING SaVaGE
2003-04-29 9:21 ` PREROUTING Frederic Gobin
2003-04-29 13:28 ` PREROUTING Eric Poulin
2003-04-29 12:53 ` Re[2]: PREROUTING netfilter_user
2003-04-29 13:33 ` SaVaGE
2003-04-29 14:49 ` Alistair Tonner
2003-04-29 15:59 ` netfilter_user [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=11611759128.20030429175920@o2.pl \
--to=netfilter_user@o2.pl \
--cc=Alistair@nerdnet.ca \
--cc=netfilter@lists.netfilter.org \
--cc=pc-secure@home.nl \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.