>-----Original Message----- >From: netfilter-admin@xxxxxxxxxxxxxxxxxxx >[mailto:netfilter-admin@xxxxxxxxxxxxxxxxxxx] On Behalf Of >Leonid Veytser >Sent: Wednesday, 12 November 2003 07:59 >To: netfilter@xxxxxxxxxxxxxxxxxxx >Subject: Problem with FORWARD hook > > >When I dump the output of all the packets traveling thru my machine, I >notice that none go thru FORWARD hook. So, I tried to make a >packet have >to go thru the FORWARD hook (ie by changing the packet dest at >PREROUTING >hook), but the packet never goes to the FORWARD hook, but disappears. > >Can there be some incorrect configuration on my machine that >would cause >it not to be able to forward packets? When you say "FORWARD hook", do you mean the FORWARD chain on the filter table? If so, you need to understand when packets would normally go throughte FORWARD chain. If the packet is sourced from another machine (physically, not logically), and destined for another machine (once again, not logically), it will go through the FORWARD chain. If it comes from the local machine, or is destined for the local machine, it will not touch the FORWARD chain. I beleive this is detailed in the netfilter FAQ and HOWTO's. They've got some nice flow diagrams there too! bkx
