<snip> > you should really read the Iptables Tutorial 1.1.19 written by Oskar > Andreasson located at > http://iptables-tutorial.frozentux.net/iptables-tutorial.html > Maybe YOU should read it. > since you may not read it, i will quote a few parts. I'll quote something you apparently missed which you can find here: http://iptables-tutorial.frozentux.net/iptables-tutorial.html#TRAVERSING OFTABLES You'll find it in Table 3.1, under Step 4, concerning the nat table and the PREROUTING chain: "This chain is used for DNAT mainly. Avoid filtering in this chain since IT WILL BE BYPASSED IN CERTAIN CASES." [caps mine] There is something leaking here, and it is not iptables. Rather, it is your firewall settings because you don't understand how to use iptables. <snip> > <begin quote> <snip> > the first packet in a stream. The PREROUTING chain should be used for > network address translation only, unless you really know what you are > doing. Did you catch that last sentence? "The PREROUTING chain should be used for network address translation only, unless you really know what you are doing." That sentence is for you, and you DON'T know what you are doing. Several people have tried to help you, and each time you insist that the problem is with iptables. I suppose you will continue to do that, instead of listening to common sense offered by those who write the program you use. Derick Anderson
