On Wed, Sep 13, 2017 at 11:36:56AM +0200, Thomas Rosenstein wrote: > Hi, > > I have to check it out, but in the mean time I already wrote my small > iptables plugin to rewrite the dst-addr. > > let's call it pre-alpha: > > https://github.com/creamfinance/dstwrite Did you try packet field mangling? https://wiki.nftables.org/wiki-nftables/index.php/Mangle_packet_header_fields You need a Linux kernel >= 4.10. Syntax is simple, eg. ip daddr set 1.2.3.4 -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
