On Tuesday 2010-07-20 20:56, Richard Horton wrote: > >> *nat >> -A POSTROUTING -o eth0 -j MASQUERADE > >-A POSTROUTING -o eth0 -j MASQUERADE --to-ports 6000-50000 > >The rule above would restrict MASQUERADE to using ports from 6000 to 50000. >(From memory doesn't postrouting and masq need a portocol when used >with ports... inwhich case... It happens not to. >-A POSTROUTING -p udp -o eth0 -j MASQUERADE --to-ports 6000-50000 >-A POSTROUTING -p tcp -o eth0 -j MASQUERADE --to-ports 6000-50000 >-A POSTROUTING ! -p tcp ! -p udp -o eth0 -j MASQUERADE At most one -p option is allowed. -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
