tiaan@xxxxxxxxxxxx wrote: > Rob Sterenborg wrote: >> and which kernel version did you use? [...] > /usr/local/sbin/iptables -t mangle -A PREROUTING -p udp --dport 9090 > -j ROUTE --tee Searching for how "-j ROUTE --tee" works, I stumbled on these pages: http://www.gossamer-threads.com/lists/iptables/devel/68316 http://www.cl.cam.ac.uk/research/dtg/research/wiki/MulticastRouting >From what I read there, --tee is used like this: iptables -t mangle -A INPUT [matches] \ -j ROUTE --tee --gw <mirror_ip> iptables -t mangle -A OUTPUT -d <dst_ip_net> -o <if_out> \ -j ROUTE --tee --oif <mirror_if_out> > /usr/local/sbin/iptables -t nat -A PREROUTING -p udp --dport 9090 -j > DNAT --to-destination 192.168.51.46:9090 > > but alas once i run these commands the packets just disappear. it > doesn't reach either of the two destinations then. any comments ? - AFAICS you forgot to tell iptables to where you want to packet copied. I also found that there appears to be a TEE target in development. http://www.gossamer-threads.com/lists/iptables/devel/68781 Grts, Rob - To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
