Hi, I have a question about why packets are disappearing in my setup. My machine has two L2TP tunnels (10.6.1.2 and 10.6.1.3) to a Web server (10.6.1.1). The local machine uses a command such as "wget http://10.6.1.1/file --bind-address 10.6.1.2" to request a file from the server. On the server, outgoing packets are rewritten to 10.6.1.3, so that they travel back through the other tunnel. That works fine. At the client, I am using the RAWDNAT target to translate the address of incoming packets destined for 10.6.1.3 to be locally translated back to 10.6.1.2. This is the rule I use: iptables -t raw -A PREROUTING -p tcp --sport 80 -d 10.6.1.3 -j RAWDNAT --to-destination 10.6.1.2 I added a LOG rule before and after RAWDNAT to verify that the destination is changed to 10.6.1.2. Everything in PREROUTING works. According to the netfilter flow chart, a packet then travels into "conntrack" and then into MANGLE PREROUTING, where I can still log the packet (that is now going to 10.6.1.2 instead of 10.6.1.3). However, then it somehow disappears! I cannot find the packet in NAT PREROUTING and also not in any INPUT or FORWARD tables after the routing decision point. What happened? What made the packet suddenly disappear? Is there something going on that causes the packets to be dropped? Best regards, Dominik -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
