Le jeu 24/07/2003 à 15:37, Gonzalez, Federico a écrit : > I think the problem is in the destination IP address, you have to use the > external IP, so i think the rule should be: > iptables -t nat -A POSTROUTING -p tcp -s 192.168.1.0/24 -d 211.1.1.10 > --dport 80 -j SNAT --to 192.168.1.1 Don't think so. In POSTROUTING chain, DNAT has already occured, then original destination (211.1.1.10) has already been changed to 192.168.1.2. Problem must sit elsewhere (next to the truth out there) ;) -- http://www.netexit.com/~sid/ PGP KeyID: 157E98EE FingerPrint: FA62226DA9E72FA8AECAA240008B480E157E98EE
