* Masquerade UDP doesn't work [not found] <9435037.2791.1328765711483.JavaMail.root@ixer.mx> @ 2012-02-09 5:35 ` Enrique Huerta de la Fuente 2012-02-09 11:05 ` Giles Coochey 0 siblings, 1 reply; 4+ messages in thread From: Enrique Huerta de la Fuente @ 2012-02-09 5:35 UTC (permalink / raw) To: netfilter Hello, Masquerade do not work at a UDP port, but if it works at a TCP port. (works) iptables -t nat -I POSTROUTING -m tcp -p tcp --dport 22 -o ppp0 -j MASQUERADE (not working) iptables -t nat -I POSTROUTING -m udp -p udp --dport 1195 -o ppp0 -j MASQUERADE Any ideas? regards E.Huerta ^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: Masquerade UDP doesn't work 2012-02-09 5:35 ` Masquerade UDP doesn't work Enrique Huerta de la Fuente @ 2012-02-09 11:05 ` Giles Coochey 2012-02-14 1:09 ` Jan Engelhardt 0 siblings, 1 reply; 4+ messages in thread From: Giles Coochey @ 2012-02-09 11:05 UTC (permalink / raw) To: ehuerta; +Cc: netfilter On 2012-02-09 05:35, Enrique Huerta de la Fuente wrote: > Hello, > > Masquerade do not work at a UDP port, but if it works at a TCP port. > > (works) iptables -t nat -I POSTROUTING -m tcp -p tcp --dport 22 -o > ppp0 -j MASQUERADE > (not working) iptables -t nat -I POSTROUTING -m udp -p udp --dport > 1195 -o ppp0 -j MASQUERADE > The "-m udp" confuses me. Do you really need to specify that module, try it without the -m option for UDP, I don't tend to use it for TCP either, but if it's not broken, don't fix it... -- Message sent via my webmail account. ^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: Masquerade UDP doesn't work 2012-02-09 11:05 ` Giles Coochey @ 2012-02-14 1:09 ` Jan Engelhardt 0 siblings, 0 replies; 4+ messages in thread From: Jan Engelhardt @ 2012-02-14 1:09 UTC (permalink / raw) To: Giles Coochey; +Cc: ehuerta, netfilter On Thursday 2012-02-09 12:05, Giles Coochey wrote: > On 2012-02-09 05:35, Enrique Huerta de la Fuente wrote: >> Hello, >> >> Masquerade do not work at a UDP port, but if it works at a TCP port. >> >> (works) iptables -t nat -I POSTROUTING -m tcp -p tcp --dport 22 -o >> ppp0 -j MASQUERADE >> (not working) iptables -t nat -I POSTROUTING -m udp -p udp --dport >> 1195 -o ppp0 -j MASQUERADE >> > > The "-m udp" confuses me. Do you really need to specify that module, try it > without the -m option for UDP, I don't tend to use it for TCP either, but if > it's not broken, don't fix it... Note that -p only looks at the IP header, but -m udp is required for the UDP header. So yes, -m udp is required (though it's added automatically if you forget it). ^ permalink raw reply [flat|nested] 4+ messages in thread
[parent not found: <1993130.2906.1328852412074.JavaMail.root@ixer.mx>]
* Re: Masquerade UDP doesn't work [not found] <1993130.2906.1328852412074.JavaMail.root@ixer.mx> @ 2012-02-10 5:41 ` Enrique Huerta de la Fuente 0 siblings, 0 replies; 4+ messages in thread From: Enrique Huerta de la Fuente @ 2012-02-10 5:41 UTC (permalink / raw) To: giles; +Cc: netfilter > >> Hello, >> >> Masquerade do not work at a UDP port, but if it works at a TCP port. >> >> (works) iptables -t nat -I POSTROUTING -m tcp -p tcp --dport 22 -o >> ppp0 -j MASQUERADE >> (not working) iptables -t nat -I POSTROUTING -m udp -p udp --dport >> 1195 -o ppp0 -j MASQUERADE >> > >The "-m udp" confuses me. Do you really need to specify that module, >try it without the -m option for UDP, I don't tend to use it for TCP >either, but if it's not broken, don't fix it... > Hello, I try: iptables -t nat -I POSTROUTING -p udp --dport 1195 -o ppp0 -j MASQUERADE but it does not work. ^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2012-02-14 1:09 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
[not found] <9435037.2791.1328765711483.JavaMail.root@ixer.mx>
2012-02-09 5:35 ` Masquerade UDP doesn't work Enrique Huerta de la Fuente
2012-02-09 11:05 ` Giles Coochey
2012-02-14 1:09 ` Jan Engelhardt
[not found] <1993130.2906.1328852412074.JavaMail.root@ixer.mx>
2012-02-10 5:41 ` Enrique Huerta de la Fuente
This is a public inbox, see mirroring instructions for how to clone and mirror all data and code used for this inbox