Do you have "/proc/sys/net/ipv4/ip_forward" set to 1? -----Original Message----- From: netfilter-admin@xxxxxxxxxxxxxxxxxxx [mailto:netfilter-admin@xxxxxxxxxxxxxxxxxxx]On Behalf Of Slav Rilov Sent: Friday, October 10, 2003 4:08 PM To: netfilter@xxxxxxxxxxxxxxxxxxx Subject: DNAT iptables :o) I have Red Hat intalled, with minimum pakets option: I am building dual host: eth1 - external, eth0(10.10.1.1 255.255.0.0) - internal interface I just want the packet to hit eth0 for testing, but it never dose I am running the folowing script: iptables -P INPUT DROP iptables -P OUTPUT DROP iptables -P FORWARD DROP iptables -t nat -A PREROUTING -i eth1 -j DNAT --to-destination 10.10.1.1 iptables -A INPUT -i eth0 -j ACCEPT iptables -A INPUT -i eth1 -j ACCEPT I have log that tracks pakets and I see that packet arrives, then it destination addresses changes to 10.10.1.1 and hits eth1 instead of eth0 and stops, never gets to eth0 Please help me Slav
