Re: NAT appears to be unaware of ports in use on router

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Tuesday 2010-07-20 20:56, Richard Horton wrote:
>
>> *nat
>> -A POSTROUTING -o eth0 -j MASQUERADE
>
>-A POSTROUTING -o eth0 -j MASQUERADE --to-ports 6000-50000
>
>The rule above would restrict MASQUERADE to using ports from 6000 to 50000.
>(From memory doesn't postrouting and masq need a portocol when used
>with ports... inwhich case...

It happens not to.

>-A POSTROUTING -p udp -o eth0 -j MASQUERADE --to-ports 6000-50000
>-A POSTROUTING -p tcp -o eth0 -j MASQUERADE --to-ports 6000-50000
>-A POSTROUTING ! -p tcp ! -p udp -o eth0 -j MASQUERADE

At most one -p option is allowed.
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at  http://vger.kernel.org/majordomo-info.html


[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux