> > > > Yes, and I've added a rule like this: > > > > /sbin/iptables -t nat -A PREROUTING -j LOG and don't see the packets. > > > Ummmm > > > if you ADD the rule above after the rule that is re-routing the > > > packet, no ... you wont see the packets. Try > > > iptables -t nat -I PREROUTING (line number) > > > where (line number) is less than the line on which your DNAT line > > > occurrs. (see iptables -t nat --line-numbers -v ) > > I'm really replacing the DNAT rule with the LOG one (only rule in the chain > > is the LOG one) > This sounds *very* strange. Perhaps more detail would give those on the list > a chance to determine what your problem is. Thanks for your help. > More detail of what the proxy is and more detail about your system setup > would likely help us determine what course of action you need to take. I'm running 2.4.23, I have an udp socket listening on port 5000, and a rule that says: iptables -t nat -A PREROUTING -p udp -j LOG --log-prefix "PREROUTING: " (that's not the rule that I want, but it seems clearer with that one) And when the box receives packets for udp 5000, the socket gets it, but the rule doesn't see it. Saludos, HoraPe --- Horacio J. Peņa horape@xxxxxxxxxxxxxxxxx horape@xxxxxxxxxx
