Hello, ratheesh k a écrit : > > Does echo reply will show up in nat PREROUTING chain ? No. If conntrack saw the echo request and the related "connection" exists, then the echo reply is in the ESTABLISHED state and by-passes the nat chains. If conntrack did not see the echo request or the related "connection" was further deleted or expired, then the echo reply is in the INVALID state and by-passes the nat chains too. -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
