Hi
we are using NFT on CentOS7, and we have setup NAT rule inorder to
translate the destination address.
Below is our rule
# nft list table nat -a
table ip nat {
chain PRE {
type nat hook prerouting priority 0; policy accept;
sctp dport diameter ip saddr 192.168.0.13 ip daddr 192.168.0.25
counter packets 4 bytes 336 dnat 10.165.249.15 # handle 9
sctp dport diameter ip saddr 192.168.1.13 ip daddr 192.168.1.25
counter packets 0 bytes 0 dnat 10.165.250.15 # handle 10
}
chain POST {
type nat hook postrouting priority 0; policy accept;
sctp sport diameter oif exsctp1 snat 192.168.0.25 # handle 4
sctp sport diameter oif exsctp2 snat 192.168.1.25 # handle 5
}
}
we have traffics with source IP 192.168.1.13 to 192.168.1.25, however,
we did not see it is forwarded to 10.165.250.15.
Is there anyway to troubleshoot the reason?
- rbk
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
