On Wednesday 2010-03-17 14:14, Robert Nichols wrote: > On 03/16/2010 10:27 PM, Angel Motta wrote: >> Hi List >> This is my first time the I write to this list. I have a problem case >> with rules PREROUTING. >> I am creating a rule PREROUTING from a range of port which request >> openvpn client and the problem is that when I apply this rules and >> only rules NATs are runing (PREROUTING and POSTROUTING the output of >> #> iptables -L is blank) the clients openvpn still conect to the >> Firewall and not to the SERVERVPN, all requests are processed for >> firewall. >> >> this is the rule: >> $IPT -t nat -A PREROUTING -i $IF_EXT -d $TESTVPN -p udp --dport >> 5000:6000 -j DNAT --to-destination $IP_DMZ_SERVERVPN > > That listing command needs to be "iptables -t nat -L". The default is > to display only the filter table, which doesn't include the above rule. The listing command should preferably be iptables-save so people get the whole picture, unabridged, and preferably, unobscured. -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
