On Fri, Nov 11, 2005 at 01:20:13PM +0100, J?rg Harmuth wrote: > It depends. But as Robs solution works for you, it looks like you only > need to redirect/forward connections (roughly: PREROUTING -> FORWARD -> > POSTROUTING). You only need nat/OUTPUT for packets, generated on the > firewall itself (roughly: local process -> OUTPUT -> POSTROUTING). If [...] I am sorry but you lost me here. Can you give the complete ruleset which I need now. I always thought I needed PREROUTING as well as OUTPUT. Thanks in advance. With warm regards, -Payal
