I have upgraded iptables to 1.2.6 Everything seems to be working as it should. Thanks Lennert.
-Alex -----Original Message----- From: Lennert Buytenhek [mailto:[EMAIL PROTECTED]] Sent: Saturday, April 06, 2002 3:06 AM To: Alex Gromov Cc: '[EMAIL PROTECTED]' Subject: Re: [Bridge] Bridge/netfilter DNAT (bug?) On Fri, Apr 05, 2002 at 03:21:29PM -0700, Alex Gromov wrote: > I found out that the problem lies with my 2.4.18 kernel + 0.0.6 patch. All > packets bypass netfilter. I went back to my production bridge/firewall > kernel (2.4.13-ac7 with 0.0.3 patch) and it seemed to work about right. I > just wanted to make use of the DNAT fix in version 0.0.4 > > After compiling 2.4.18 with 0.0.6 patch I get the following error when any > operation on MANGLE table is performed: > > iptables: libiptc/libip4tc.c:384: do_check: Assertion `h->info.valid_hooks > == (1 << 0 | 1 << 3)' failed. This is because you are running Red Hat and are running an old iptables binary package. Upgrade your iptables version. Does your bridge-nf 'problem' magically disappear now? cheers, Lennert _______________________________________________ Bridge mailing list [EMAIL PROTECTED] http://www.math.leidenuniv.nl/mailman/listinfo/bridge
