On Wednesday 10 July 2002 11.16, Harald Welte wrote: > On Wed, Jul 10, 2002 at 10:00:36AM +0200, Peter Kundrat wrote: > > before rewriting dst addr/port), and there is no mangle hook in > > POSTROUTING (which would help, since it would be before SNAT). > > yes, there is. You must be using a relatively old kernel verison. > Think this changed around 2.4.14
In patch-o-matic we also have the interesting match "conntrack" that solves many relevant issues..
