On Mon, 2005-01-03 at 03:34, Andreas Pettersson wrote: > So it should look like something like this instead.. ? > What does the -I do? and why is the order so important (just curious > and wants to learn). > > -- CUT HERE -- > > iptables -t nat -A POSTROUTING -o eth1 -d ! $INET_IP -j SNAT --to > $INET_IP > > iptables -I FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT > iptables -A FORWARD -p tcp --tcp-flags SYN,RST SYN -j TCPMSS > --clamp-mss-to-pmtu > > ## WWW Forwarding ... > iptables -A FORWARD -i eth1 -o eth0 -p tcp -d 192.168.1.30 --dport 80 > -j ACCEPT > iptables -t nat -A PREROUTING -i eth1 -p tcp -d $INET_IP --dport 80 -j > DNAT --to 192.168.1.30:80 > > -- CUT HERE -- yup. -j -- "When will I learn? The answer to life's problems aren't at the bottom of a bottle, they're on TV!" --The Simpsons
