Bonjour Pascal, Pascal Hambourg schreef: >> I have a problem on a NSLU2 running openwrt to do inboud portforwarding >> to my internal webserver: >> iptables -A PREROUTING -t nat -i ppp0 -p tcp --dport 80 -j DNAT --to >> 192.168.1.10 >> iptables -I FORWARD -d 192.168.1.0/24 -j ACCEPT >> This works, however, when I look at the webserver, the traffic seams to >> come from my router (192.168.1.1) and not from the IPaddress on the >> internet. >> I don't know why he does this as I only configured a DNAT, no SNAT. > Check in the nat/POSTROUTING chain for an existing SNAT or MASQUERADE > rule that matches port forwarded connections. It could be specific to > the LAN interface or generic to any interface (and not only to the PPP > interface), such as : > iptables -t nat -A POSTROUTING -j MASQUERADE There is one, but it's only for outbound connections: iptables -I POSTROUTING -t nat -o ppp0 -j MASQUERADE So it shouldn't have any impact. What I did notice. If I do "iptables -L -n -v", I do not see anything for the portwarding rules anywhere. Is there any command to see what is REALLY in the full configuration of iptables. Perhaps there is part of the iptables that is configured at some other script somewhere else. Cheerio! Kr. Bonne. -- To unsubscribe from this list: send the line "unsubscribe linux-net" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
