On Thursday 2011-06-23 11:17, Auro Benas wrote: >Hi Readers, >thanks you Oskar, so in simple words you are saying that IPTables >can't do what I have in mind to accive with it. You can loop traffic through veth, but the larger question is why you can't just filter in FORWARD - after all, with -m conntrack you also can match against the original addresses. -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
