Re: Seeing all packets

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Once the NAT rule kicks in for certain session all the subsequent
packets of that session would bypass the nat rules...

Ramin

On Tue, Jun 17, 2003 at 02:38:55PM -0600, Paul Albert wrote:

> Hi - 
> 
> I'm trying to do some firewalling on every packet that goes through our
> firewall.  We're doing our filtering in the PREROUTING chain (not
> recommended, I realize), because we must do our firewalling to determine
> whether we need to NAT a request.  There are times when the NAT
> PREROUTING chain is bypassed, and I'm not exactly sure why.  The docs
> say that "it will be bypassed in certain cases," however I cannot
> determine what these cases are.
> 
> Why are the packets getting sent past the NAT PREROUTING chain?
> Is there a way to send all of the data through this chain?
> 
> Regards,
> Paul
> 


[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux