Hello,
When I run "iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE" I get iptables: Invalid argument, it seems I have all the modules loaded (if not, they load automatically):
# lsmod | grep ip
ipt_MASQUERADE 1336 0 (autoclean)
ipt_state 568 1 (autoclean)
iptable_filter 1740 1 (autoclean)
iptable_nat 16728 0 (autoclean) [ipt_MASQUERADE]
ip_conntrack 19048 2 (autoclean) [ipt_MASQUERADE ipt_state iptable_nat]
ip_tables 12448 6 [ipt_MASQUERADE ipt_state iptable_filter iptable_nat]
and my current chains are like:
iptables -L -v
Chain INPUT (policy ACCEPT 5676 packets, 4409K bytes)
pkts bytes target prot opt in out source destination
Chain FORWARD (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 ACCEPT all -- eth1 eth0 anywhere anywhere state RELATED,ESTABLISHED
4 246 ACCEPT all -- eth0 eth1 anywhere anywhere
Chain OUTPUT (policy ACCEPT 5946 packets, 388K bytes)
pkts bytes target prot opt in out source destination
and
# iptables -t nat -L -v
Chain PREROUTING (policy ACCEPT 714 packets, 128K bytes)
pkts bytes target prot opt in out source destination
Chain POSTROUTING (policy ACCEPT 227 packets, 13960 bytes)
pkts bytes target prot opt in out source destination
Chain OUTPUT (policy ACCEPT 225 packets, 13838 bytes)
pkts bytes target prot opt in out source destination
any idea ? am I missing something ? I think it used to work with gentoo-sources (now using vanilla-sources).
Thank you.
With netfilter (iptables), I find it easiest to just compile almost everything under Netfilter Configuration into the kernel. There's really no point to making them modules if the rules will always be active.
-- Andrew Gaffney
-- [EMAIL PROTECTED] mailing list
