RE: intermittent nat issue

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hi Mark,

Did you flush the conntrack? Perhaps what you are seeing are some already established connections prior to setting the rule in iptables?
Try with "conntrack -D" to remove the connections.

Best,
Jesus

-----Original Message-----
From: netfilter-owner@xxxxxxxxxxxxxxx [mailto:netfilter-owner@xxxxxxxxxxxxxxx] On Behalf Of Mark Coetser
Sent: 20 January 2017 08:25
To: netfilter@xxxxxxxxxxxxxxx
Subject: intermittent nat issue

Hi All

kernel 3.16.0-4-686-pae
iptables 1.4.21-2+b1

I have a few different firewalls that are exhibiting the same issue

basic rule iptables -t nat -I POSTROUTING -o $external_iface -j MASQUERADE

when running tcpdump on $external_iface I am seeing SOME packets from the private_network not being masqueraded/natted.

--
Thank you,

Mark Adrian Coetser
mark@xxxxxxxxxxxx

"Help save the world!"              -- Larry Wall in README

--
To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at  http://vger.kernel.org/majordomo-info.html
��.n��������+%������w��{.n����z��׫�)��jg��������ݢj����G�������j:+v���w�m������w�������h�����٥
[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux