Try http://www.zelow.no/floppyfw/ Regards Søren Kent Jensen ----- Original Message ----- From: "Craig Packard" <cpackard@xxxxxxxxxxxxxxxx> To: "Ralf Spenneberg" <lists@xxxxxxxxxxxxxx> Cc: "Netfilter" <netfilter@xxxxxxxxxxxxxxxxxxx> Sent: Friday, March 07, 2003 5:47 PM Subject: Re: UDP DNAT Problem > On 4 Apr 2003, Ralf Spenneberg wrote: > > > Am Fre, 2003-04-04 um 05.14 schrieb Craig Packard: > > > > > The packet goes out as expect srcA dstB > > > But the weird part is the response comes back in srcFW dst(A) Where I would like it would be src(B) dst(A)!!! > > Are you sure, that you do not have any SNAT rule that might be > > responsible? > > Post your PRE- and POSTROUTING chains. > > > > Thanks a TON for any help. Have been stuck on this for a week! > > Here is the chains. (I changed the last number in the internet IP to * to > slightly hide my location.) On my box it of course shows my proper > outside address. > > > > [root@xxxxxx firewall_rules]# iptables -t nat -L > Chain PREROUTING (policy ACCEPT) > target prot opt source destination > DNAT udp -- anywhere > acs-24-154-175-*.zoominternet.netudp dpt:5198 to:192.168.25.11:5198 > DNAT udp -- anywhere > acs-24-154-175-*.zoominternet.netudp dpt:5199 to:192.168.25.11:5199 > > Chain POSTROUTING (policy ACCEPT) > target prot opt source destination > MASQUERADE all -- anywhere anywhere > > Chain OUTPUT (policy ACCEPT) > target prot opt source destination > > >
