On Thu, Aug 26, 2004 at 08:21:00PM -0400, Jason Opperisano wrote: > > iptables -t nat -I PREROUTING --source 207.155.252.12 -p tcp --dport 777 > > -j DNAT --to-destination 198.81.129.101 > iptables -t nat -I POSTROUTING -p tcp --dport 777 -s 207.155.252.12 \ > -d 198.81.129.101 -j SNAT --to-source 198.81.129.100 Thanks... but I wanted to keep the original source. Sorry, udp is really what I've got in mind here, I was just using tcp because it's easier to test with "telnet 198.81.129.100 777" than it is to fire up a program to create a UDP packet. What I'm looking for is for queries to one DNS server from certain IP addresses to be redirected to another... but without any interaction with the BIND daemon itself. -- mors omnia vincit
