Hi, These seems to be some duplicate functionality in iproute2 and netfiler. Some of it is more or less reasonable (e.g. policy routing based on parameters like source IP in iproute2, which could also be accomplished by marking packets in iptables and then using the "fw" classifier in iproute2), but the fact that NAT exists in both packages doesn't make sense to me. (I'm talking about "ip rule add type nat" and "iptables -t nat".) Is it actually the same NAT implementation? If it is, why is it controlled from both places? And if it isn't, why is NAT implemented twice? And which one should be used? Thanks! -- Alex Shnitman <alexsh@hectic.net> http://alexsh.hectic.net/ UIN 188956 PGP 0xEC5D619D / E1 F2 7B 6C A0 31 80 28 63 B8 02 BA 65 C7 8B BA - : send the line "unsubscribe linux-net" in the body of a message to majordomo@vger.kernel.org
