Masquerade is working now. The rule is to stop networking beforee changes to nat iptables and after networking start. This rule don't need to be applied for tthee filter iptables. Thanks everyone for the help. Stephan ----- Original Message ----- From: "Mardaga Stephan" <smardaga@xxxxxxxxxx> To: <netfilter@xxxxxxxxxxxxxxxxxxx> Sent: Wednesday, August 25, 2004 9:40 PM Subject: Re: Masquerade don't masquerade > From: "Jason Opperisano" <Jopperisano@xxxxxxxxxxxxxxxx> > > > > iptables release 1.2.6a > > Linux 2.4.18-bf2.4 #1 Son Apr 14 09:53:28 CEST 2002 i686 unknown > > > > Chain PREROUTING (policy ACCEPT) > > target prot opt source destination > > > > Chain POSTROUTING (policy ACCEPT) > > target prot opt source destination > > LOG all -- anywhere anywhere LOG level > > warning > > MASQUERADE all -- 192.168.1.0/24 anywhere > > LOG all -- anywhere anywhere LOG level > > warning > > > > Chain OUTPUT (policy ACCEPT) > > target prot opt source destination > > > > Any help and/or suggestions will be accepted gratefully. > > blind gues would be that you have the wrong interface specified in your > MASQUERADE rule. can you post the output of "iptables -t nat -vnL" instead > of just "-nL" so we can see the in/out interfaces. > > here are : > > Chain PREROUTING (policy ACCEPT 643 packets, 82862 bytes) > pkts bytes target prot opt in out source > destination > > Chain POSTROUTING (policy ACCEPT 61 packets, 18460 bytes) > pkts bytes target prot opt in out source > destination > 55 16492 LOG all -- * * 0.0.0.0/0 > 0.0.0.0/0 LOG flags 0 level 4 > 0 0 MASQUERADE all -- * eth0 192.168.1.0/24 > 0.0.0.0/0 > 55 16492 LOG all -- * * 0.0.0.0/0 > 0.0.0.0/0 LOG flags 0 level 4 > > Chain OUTPUT (policy ACCEPT 61 packets, 18460 bytes) > pkts bytes target prot opt in out source > destination > > Stef > >
