On Thu, Aug 05, 2004 at 11:29:14PM -0300, Damian Gatabria wrote: > So, while this iptables rule does work for port forwarding > to another host: > > iptables -t nat -A PREROUTING -p tcp -i eth0 -m multiport \ > --dports mysql -j DNAT --to some.other.host > > changing "some.other.host" to 127.0.0.1 doesn't work > as expected, and packets seem to be dropped altogether. > Using tcpdump i can see packets reaching eth0, but > never reaching loopback. Did you add a rule in your INPUT chain to allow this traffic? Phil - : send the line "unsubscribe linux-net" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
