On 06/01/2006 01:56 AM, moniacheli@xxxxxxxxxx wrote: > Is there some iptables options that I have to give to force the rules > updating? No, the problem is that NAT rules are only used for the first packet in a connection, and the conntrack table entry hasn't timed out. You can delete the entry using the conntrack tool (requires a recent kernel and you may need to get the conntrack tool source from svn.)
