On Tue, Nov 21, 2023 at 09:52:33AM +0100, Blažej Krajňák wrote: > > Hello everyone, > > I’m wondering if is it possible to perform NAT 1:1 without using conntrack table/module at all? > Of course using nftables / iptables. There is stateless NAT, if that is what you are searching for. https://wiki.nftables.org/wiki-nftables/index.php/Performing_Network_Address_Translation_(NAT)#Stateless_NAT > Because for now I see xdp/bpf as the only way. > > > > Thanks > Blažej
