In this doc http://www.netfilter.org/documentation/HOWTO//NAT-HOWTO-6.html#ss6.1 it says use --to-source, not --to /B ----- Original Message ----- From: "Whit Blauvelt" <whit@xxxxxxxxxxxxx> To: <netfilter@xxxxxxxxxxxxxxxxxxx> Sent: Monday, August 04, 2003 11:56 Subject: SNAT "invalid argument" > Hi, > > I've been using SNAT for some time on several systems. However on a system I > just built I get the following response: > > # iptables -t nat -A POSTROUTING -o eth0 -j SNAT --to 1.2.3.4 > iptables: Invalid argument > > That's with 1.2.3.4 replaced by a real IP (or not). > > This is driving me up the wall since "Full NAT" support is compiled into > the 2.4.21 kernel. The iptables version is 1.2.8. The only thing different > in the kernel options from what I've used before is that I also included > "NAT of local connections" - haven't tried to use that yet though. > > iptables is otherwise working fine. -j MASQUERADE (also compiled in) also > gives me an "Invalid argument" - so it does look like something's wrong in > the NAT section, but damned if I know what. > > Whit >
