Hello, On Sat, Jan 25, 2025 at 04:55:49PM +0100, Marc SCHAEFER wrote: > telnet 193.72.186.130 8080 gives this on enp2s0.300 > > IP 193.72.186.190.52636 > 193.72.186.130.8080 (normal) > IP 193.72.186.190.52636 > 192.168.202.10.80 (good, it was DNATted, BUT should be on enp2s0.202!) Ok, my fault! There still was an old configuration lying around which did: root@test:~# ip rule 0: from all lookup local 32764: from 193.72.186.128/26 lookup 193 32766: from all lookup main 32767: from all lookup default obviously, that's the bug. If I remove those, then it works like it should. I will now work on the conntrack part.
