On Friday 2010-07-16 17:14, Bas van Sisseren wrote: >>> >>> OK, so basically you just want to rewrite the port number. An easier >>> way to do this without iterating through all addresses would be to >>> change userspace and the kernel so you can create REDIRECT rules >>> without the IP_NAT_RANGE_MAP_IPS flag. That won't work for forwarded >>> packets, but its the simplest solution for the case you describe. >> >> Isn't TPROXY the right thing here if all you want is changing the port >> of delivery? :-) > >I could use TPROXY.. But then I still need to patch the kernel. Even Debian >unstable kernels do not yet have the ipt_TPROXY module. Besides that, >TPROXY looks promising. Squeeze should have xt_TPROXY.ko, which was added for 2.6.28. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
