I am trying to set up a bridge with nat. I have set up a test machine on 2.4.18 kernel with 0.0.6 bridge/netfilter patch, where ISP ---> eth0 [bridge/nf] eth1 <----- x.x.x.89
The bridge and filter table work just fine, but when I send packets to x.x.x.90 trying to translate them to x.x.x.89 using following rule iptables -t nat -A PREROUTING -eth0 -d x.x.x.90 -j DNAT --to-destination x.x.x.89 it doesn't work. Note that I have a network range that includes .90 so its valid. With tcpdump I can see incoming packets addressed to x.x.x.90 on eth0 and coming out on eth1 w/ the destination unchanged! The count for the rule above stays at 0. Moreover the total count for PREROUTING chain most of the time doesn't increment even when I set traffic to .89. Which makes me think that some packets go through PREROUTING chain, but most of them don't. According to netfilter documentation, every incoming packet should go through RREROUTING chain first before it even makes any routing decision. Is this a bug? I am really lost here. And help would be appreciated. Thanks. -Alex _______________________________________________ Bridge mailing list [EMAIL PROTECTED] http://www.math.leidenuniv.nl/mailman/listinfo/bridge
