On Friday 01 November 2002 6:08 am, Joel Newkirk wrote: > Question to list: At what point in its own travels does the returning > packet get automatically un-DNATed? Prerouting again? No, it happens in POSTROUTING - because it is then a SNAT operation. Useful rule of thumb - in the FORWARD chain, all packets have their "real" IP addresses. That's because DNAT rules have already happened in PREROUTING, so packets now have the destination address of the machine they're really being sent on to, and SNAT rules have not yet happened in POSTROUTING, so packets still have the source address of the machine they really came in from. Antony. -- This email is intended for the use of the individual addressee(s) named above and may contain information that is confidential, privileged or unsuitable for overly sensitive persons with low self-esteem, no sense of humour, or irrational religious beliefs. If you have received this email in error, you are required to shred it immediately, add some nutmeg, three egg whites and a dessertspoonful of caster sugar. Whisk until soft peaks form, then place in a warm oven for 40 minutes. Remove promptly and let stand for 2 hours before adding some decorative kiwi fruit and cream. Then notify me immediately by return email and eat the original message.
