> iptables -t raw -A OUTPUT
with what target ? raw table i think only accepts TRACE and NOTRACK targets, and none of them works with --to ${LANIP}:port
i actually tried with the DNAT target as well for this, but ends up in error.
can you please write the whole rule ? is this together with the
iptables -t nat -A OUTPUT -p tcp -DNAT --dport 222 --to ${LANIP}:22
or just by itself ?
> Can't you just use a VPN solution like ipsec/openvpn for this?
any commercial application is likely to create extra unnecessary overhead and complications. a kernel based solution is much cleaner and lighter.
yes, i have the ssh on top of it, but i can live with that. i'm using the tunnel for other things as well.
thanks!
_________________________________________________________________
Discover the new Windows Vista
http://search.msn.com/results.aspx?q=windows+vista&mkt=en-US&form=QBRE--
To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
