The DNAT and PREROUTING tables are in the nat table, so to flush, you need to specify it: iptables -F -t nat And to look at the REROUTING table , it's similar: iptables -L -t nat
Good Luck, Ted Fines Macalester College --On Saturday, March 16, 2002 2:49 AM +0100 canx <[EMAIL PROTECTED]> wrote: > Hi everbody, > > here is a little question regarding DNAT. Maybe you can help me out: > > recently i upgrade to 2.4.17 on my x486 and installed the irc patch for > iptables. Up to now i was just masquerading from my internal network eth0 > to my external ppp0 and allowed external connections to the x486 on port > 80,20,21 and 22 (suisse army knife: fw and websever plus ftp on one > machine, please don't laugh...). > > Then i tried to test to forward the ssh to my notebook behind the x486 fw > which work fine with > > iptables -t nat -A PREROUTING -ippp0 -p tcp --dport 22 -j DNAT --to > 192.168.1.1 (my notebook on the internal network ...) > > But when I tried to Flush the Prerouting entrie i found two problems: > > 1.) The entrie stayed active even after i did a whole flush of iptables > with iptables -F 2.) I couldn't see the current settings of PREROUTING > > When i enter iptables -L -vn i dont see my configured PREROUTING. Is > this because I have an old version of iptables? > > My current iptable front end is version 1.2.1a but i am using a quit new > kernel plus the newest patch... > > Thanks guys > >
