hi, i think i just noticed a mistake in your NAT-howto... (http://www.netfilter.org/documentation/HOWTO//NAT-HOWTO.html) section 5.2 Finer Points Of Selecting What Packets To Mangle 4th paragraph: "These options must follow the `-p' option (which has a side-effect of loading the shared library extension for that protocol). You can use port numbers, or a name from the /etc/services file." we talk about protocols here. not ports! so /etc/protocols is the right reference not /etc/services. so i'd suggest: s/port numbers/protocol numbers/ and s,/etc/services,/etc/protocols, or am i horribly wrong? regards, th -- Tobias Hintze http://hbs-solutions.de HBS solutions GbR - Network & Information Systems
