Hi Chris, On Thu, Jan 9, 2014 at 10:57 PM, Chris Frederick <cdf123@xxxxxxxxxx> wrote: > Any ideas would be helpful. If I have understood things correctly, packets belonging to an established connection does not hit any of the chains in the nat table. If you want to mangle/filter/manipulate/... these packets, you can use for example the POSTROUTING chain in the mangle table or in rawpost. The latter requires xtables-addons as well as slight change to compilation as rawpost was removed in a recent commit. See: http://sourceforge.net/p/xtables-addons/xtables-addons/ci/9414a5df343bf30ba13e76dbd7181c55683b11cb/ -Kristian -Kristian -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
