Jaga Doe <jaga.doe@xxxxxxx> wrote:
> table bridge tbrFilter {
> chain cbrRedirect {
> type filter hook prerouting priority 0;
> log tcp dport $TPORT meta pkttype set host ether daddr set $MON_MAC counter
> }
> }
>
> table inet tlcRedirect {
> chain clcRedirect {
> type nat hook prerouting priority 0;
> log tcp dport $TPORT counter redirect to $TPORT
> }
> }
>
> Using this configuration, the connection to PC0:3000 seems that it is captured by the nft but is not going to the local process.
>
> What I am missing here?
I don't see anything wrong here, this should work and $TPORT should end
up in inet input hook.
Does it end up in forward instead or does it 'just disappear'?
Does 'nstat' show anything?
