From: Pascal Hambourg <pascal.mail@plouf.fr.eu.org>
To: netfilter@vger.kernel.org
Subject: Re: Ports
Date: Thu, 20 Nov 2008 20:49:30 +0100 [thread overview]
Message-ID: <4925BF4A.3090104@plouf.fr.eu.org> (raw)
In-Reply-To: <d006ee070811201024x23f6fa88l20edfab22ef20e2f@mail.gmail.com>
Mike a écrit :
>
> I rechecked my ports, tried again, tcpdump'd X and Y, ssh'd from
> another box and it WORKED!
As I said in my previous message, NAT in the PREROUTING chain works only
for connections from another host, not from the same host.
BTW, REDIRECT may change the destination address too. "DNAT --to :port"
just changes the destination port.
> Thats good and all, but when I iptables -F , shouldn't I stop seeing
> traffic on my redirect port? Am I missing something else?
"iptables -F" flushes only the default table, which is 'filter'. Your
rule is in the 'nat' table. To flush it, run "iptables -t nat -F".
next prev parent reply other threads:[~2008-11-20 19:49 UTC|newest]
Thread overview: 14+ messages / expand[flat|nested] mbox.gz Atom feed top
2008-11-20 7:34 Ports Mike
2008-11-20 12:27 ` Ports Paul Evans
2008-11-20 18:00 ` Ports Mike
2008-11-20 18:07 ` Ports Paul Evans
2008-11-20 18:24 ` Ports Mike
2008-11-20 18:29 ` Ports Paul Evans
2008-11-20 18:35 ` Ports Mike
2008-11-20 19:49 ` Pascal Hambourg [this message]
2008-11-20 19:34 ` Ports Pascal Hambourg
-- strict thread matches above, loose matches on Subject: below --
2002-09-09 17:30 Ports Mattia Martinello
2002-09-09 17:38 ` Ports Maciej Soltysiak
2002-09-09 17:41 ` Ports Ramin Alidousti
2002-09-09 18:00 ` Ports Mattia Martinello
2002-09-09 18:39 ` Ports Antony Stone
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=4925BF4A.3090104@plouf.fr.eu.org \
--to=pascal.mail@plouf.fr.eu.org \
--cc=netfilter@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox