Florin Andrei wrote: > Florin Andrei wrote: > >> I understand the thing about stateless NAT and 2.6.24 - that's very >> good news, too bad it's not in older versions. :-) > > > Come to think of it, I need explanations for this one too. :-) > Is that true only for 1:1 NAT, or NAT in general? If the former, is that > a special new case, requiring different iptables rules, or something else? Its implemented as TC action, so its independant of iptables. It only supports 1:1 NAT, everything else needs to be stateful to avoid clashes. > I assume these are recent changes to netfilter - is there a place where > I can find these specific changes documented or discussed? Check the netdev archives of the past two or three weeks. - To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
