All of lore.kernel.org
 help / color / mirror / Atom feed
From: Martijn Lievaart <m@rtij.nl>
To: Daniel Drake <dsd@gentoo.org>
Cc: netfilter@lists.netfilter.org
Subject: Re: Struggling with NAT: is PREROUTING working at all?
Date: Fri, 21 Jul 2006 19:34:04 +0200	[thread overview]
Message-ID: <44C1100C.2080006@rtij.nl> (raw)
In-Reply-To: <44BE40D6.90108@gentoo.org>

Daniel Drake wrote:

> I took a step back and re-read the iptables man page. It says that the 
> nat table is consulted whenever a new connection is about to be 
> established, and PREROUTING is used when packets come in, so I'd 
> expect this rule to give me a lot of output:
>
>     iptables -t nat -A PREROUTING -j LOG
>
> But, I get nothing, even when successfully establishing a new 
> connection from the outside to the linux system. Logging is definitely 
> working since I can get logs from other rules.
>
> No other rules are in place before this one, my script simply clears 
> all tables/chains, sets all policies to ACCEPT, then runs the above 
> command.
>
> Am I missing something, or PREROUTING not triggering when it should be?


You may have hit a bug here. That should have worked. I never tried 
LOGging from prerouting, but the NAT functionality definately works.

M4


  reply	other threads:[~2006-07-21 17:34 UTC|newest]

Thread overview: 3+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2006-07-19 14:25 Struggling with NAT: is PREROUTING working at all? Daniel Drake
2006-07-21 17:34 ` Martijn Lievaart [this message]
2006-07-24 12:41   ` Sietse van Zanen

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=44C1100C.2080006@rtij.nl \
    --to=m@rtij.nl \
    --cc=dsd@gentoo.org \
    --cc=netfilter@lists.netfilter.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line before the message body. 
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.