Josh Nerius wrote:

>Hello,
>...
>
>iptables -t nat -A PREROUTING -m physdev --physdev-in eth0 -s
>192.168.150.222 -p tcp --dport 80 -j DNAT --to
>destination.ip.address.here
>
>  
>
where this "destination ip address" is? i mean, is it another network on 
the same firewall/router, is it an host somewhere out there on the net?

I use some rules like this one on my Bridged Firewall to DNAT some 
connection on a 3rd network i have on this firewall and, with the add of 
some rules in FORWARD chain, it works fine.

Do u ACCEPT traffic for "destination.ip.address.here" ?

maybe a little bit more rules would help :)

-- 
---------------------------------------
#######################################

"Linux, the choice of a GNU generation"
     ==Micro$oft - just say NO== 

#######################################
---------------------------------------