Turns out that the whole thing works if I take rp_filter off that
interface and omit the tcp rule from the POSTROUTING chain. Strange!
on Sunday 04/06/2003 Ian Morgan(imorgan@xxxxxxxxx) wrote
> On Mon, 31 Mar 2003, John Covici wrote:
>
> > iptables -t nat -A POSTROUTING -o eth1 -j SNAT -p tcp --sport 25 --to <ip address for eth1>
> > iptables -t nat -A POSTROUTING -o ppp0 -j SNAT --to <ip address for ppp0>
> >
> > I thought I would need something for the output chain as well, but I
> > kept getting invalid argument when I tried to put the same rule into
> > the output chain like the one I put into the POSTROUTING chain.
> >
> > So what am I doing wrong here?
>
> I've noticed that for every release in the 2.4.21-pre series, I have to
> rebuild iptables, otherwise I get "invalid argument" on the SNAT rules.
> _VERY_ annoying. A simple rebuild solves the prob though.
>
> Regards,
> Ian Morgan
>
> --
> -------------------------------------------------------------------
> Ian E. Morgan Vice President & C.O.O. Webcon, Inc.
> imorgan@xxxxxxxxx PGP: #2DA40D07 www.webcon.ca
> * Customized Linux network solutions for your business *
> -------------------------------------------------------------------
--
John Covici
covici@xxxxxxxxxxxxxx
