Hi,
Refer to the wiki from this
https://wiki.nftables.org/wiki-nftables/index.php/Multiple_NATs_using_nftables_maps
I configured the my server's nftables like this
% nft add rule nat prerouting dnat \
tcp dport map { 1000 : 1.1.1.1, 2000 : 2.2.2.2, 3000 : 3.3.3.3} \
: tcp dport map { 1000 : 1234, 2000 : 2345, 3000 : 3456 }
However, when I try nft list ruleset, I can't get the destination ip
addr, like 1.1.1.1 or 2.2.2.2
table ip nat {
chain postrouting {
type nat hook postrouting priority 100; policy accept;
}
chain prerouting {
type nat hook prerouting priority 100; policy accept;
dnat to :tcp dport map { 2000 : 2345, 3000 : 3456, 1000 : 1234}
}
}
Only `2000 : 2345, 3000 : 3456, 1000 : 1234`. The detail of nat config
is missing. Not sure it is a bug or there are some command line
parameter needed to get all information.
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
