On 4 Apr 2003, Ralf Spenneberg wrote: > Am Fre, 2003-04-04 um 05.14 schrieb Craig Packard: > > > The packet goes out as expect srcA dstB > > But the weird part is the response comes back in srcFW dst(A) Where I would like it would be src(B) dst(A)!!! > Are you sure, that you do not have any SNAT rule that might be > responsible? > Post your PRE- and POSTROUTING chains. > Thanks a TON for any help. Have been stuck on this for a week! Here is the chains. (I changed the last number in the internet IP to * to slightly hide my location.) On my box it of course shows my proper outside address. [root@xxxxxx firewall_rules]# iptables -t nat -L Chain PREROUTING (policy ACCEPT) target prot opt source destination DNAT udp -- anywhere acs-24-154-175-*.zoominternet.netudp dpt:5198 to:192.168.25.11:5198 DNAT udp -- anywhere acs-24-154-175-*.zoominternet.netudp dpt:5199 to:192.168.25.11:5199 Chain POSTROUTING (policy ACCEPT) target prot opt source destination MASQUERADE all -- anywhere anywhere Chain OUTPUT (policy ACCEPT) target prot opt source destination
