Re: newbie question

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

iptables -t nat -A PREROUTING -s xxx.xxx.xxx.xxx/yyy.yyy.yyy.yyy -p tcp -m tcp --dport 80 -j REDIRECT --to-ports 8080


M. Ahmad Ijaz wrote:

do i know where to put that "-t nat"
iptables -A PREROUTING -s xxx.xxx.xxx.xxx/yyy.yyy.yyy.yyy -p tcp -m
tcp --dport 80 -j REDIRECT --to-ports 8080

----- Original Message ----- From: "Antony Stone" <Antony@xxxxxxxxxxxxxxxxxxxx>
To: <netfilter@xxxxxxxxxxxxxxxxxxx>
Sent: Thursday, April 08, 2004 5:02 PM
Subject: Re: newbie question




On Thursday 08 April 2004 12:57 pm, M. Ahmad Ijaz wrote:



when i try to use this command

iptables -A PREROUTING -s xxx.xxx.xxx.xxx/yyy.yyy.yyy.yyy -p tcp -m tcp
--dport 80 -j REDIRECT --to-ports 8080

where xxx is any IP and yyy is the subnet mask, it returns me the same
message i.e. iptables: No chain/target/match by that name

So it also give the same message with POSTROUTING.


You need a "-t nat" in there, to tell it the rule is going into the nat


table


of the PREROUTING chain, not the filter table (which is the default, but


does


not exist in PREROUTING).

Regards,

Antony.

--
People who use Microsoft software should be certified.

Please reply to the


list;


please don't CC


me.











[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux