Magnus Schmidt wrote:
I am aware that there are still hundreds of other rules active in FORWARD or INPUT (for filter). However the mangle-filter and the nat-filter are exactly as shown below. How can a packet traverse mangle-POSTROUTING, but not reach nat-POSTROUTING ?
Only the first packet is seen there, once a nat-mapping is established, the nat tables are skipped for the rest of the packets.
HTH, M4 - To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
