> First thing to bear in mind: The mangle table is purely for packet > manipulation actions and should not be used for filtering. Move the > two accept rules into the filter table (just omit the -t mangle > parameter). > > Port 21 is only the ftp control port - data uses port 20. > > If you have the ftp helper try > $IPTABLES -t nat -A POSTROUTING -s 192.x.y.a -m helper --helper ftp -j SNAT --to-source 194.160.1.1 Sorry I made the corrections accordinly by placing in FILTER table moving from MANGLE table. Added POSTROUTING nat rule for ftp helper. But there is no change in the situation as I still see no packets leaving from BOX1 to FTPServer. Still I see counters for respective iptable rules getting incremented nothing more than that. -- Thanks & Regards www.codingfreak.blogspot.com -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
