|
We are trying to NAT some UDP traffic and can't get
iptables configured correctly.
We are using version 1.27 on familiar linux version
0.5.3
Here is our configuration:
# iptables -t nat -L
Chain PREROUTING (policy ACCEPT) target prot opt source destination Chain POSTROUTING (policy
ACCEPT)
target prot opt source destination SNAT all -- anywhere anywhere to:192.168.0.31 Chain OUTPUT (policy
ACCEPT)
target prot opt source destination When a TFTP packet comes in on 192.168.1.1 it gets
SNAT'd
and sent out 192.168.0.31, but the reply is always
dropped
and an unreachable messages is sent
out.
We have tried it with:
iptables -t nat -A POSTROUTING -o eth0 -j
MASQUERADE
this configuration does the same
thing.
Does NAT work for UDP in general, and TFTP in
particular?
The man page has lots of UDP specific
options
do those only apply to filtering, and not
NAT?
Thanks for any help.
Jean Khosalim and David
Shifflett
|
