Modify packet without NAT

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: Modify packet without NAT
From: public1020 <public1020@xxxxxxxxx>
Date: Sat, 17 Jun 2023 03:22:46 +0000
Feedback-id: 74140009:user:proton

I have a simple nat configuration to forward certain access to a gateway:

iptables -t nat -A PREROUTING -p tcp -m set --match-set http_port dst,dst -j DNAT --to-destination XXX:80
iptables -t nat -A POSTROUTING -j MASQUERADE

Can I do that without nat? Just trying to avoid the "conntrack table full" issue.
Is there a non-stateful solution?

Follow-Ups:
- Re: Modify packet without NAT
  - From: Reindl Harald
- Re: Modify packet without NAT
  - From: Serg

Prev by Date: Rule-based traffic/port mirroring
Next by Date: Re: Modify packet without NAT
Previous by thread: Rule-based traffic/port mirroring
Next by thread: Re: Modify packet without NAT
Index(es):
- Date
- Thread

[Index of Archives] [Linux Netfilter Development] [Linux Kernel Networking Development] [Netem] [Berkeley Packet Filter] [Linux Kernel Development] [Advanced Routing & Traffice Control] [Bugtraq]

Powered by Linux