On Sunday 02 June 2002 2:42 pm, [EMAIL PROTECTED] wrote: > Hi friends, I'am reading some howto and I found that OUTPUT chain in NAT > table is broken...? that's true?
I'm not sure about this one - I know it used to be broken; I don't know if it still is... Why not just try it for yourself ? A simple test will tell you if your version of netfilter can do it or not. > Could I write a rule like this: > > iptables -t nat -A OUTPUT -d x.x.x.x -j DNAT --to-destination y.y.y.y Looks okay according to the syntax in the iptables man page - try it and see. Put a rule like this on your machine, then telnet (or whatever) to x.x.x.x and see if you end up connecting to x.x.x.x or y.y.y.y Antony.
