On Tue, Jan 25, 2005 at 10:38:13AM +1100, Peter Rundle wrote: > > The good packets do, the bad packets don't. If I add a LOG message to the > >mangle POSTROUTING chain, though (which comes before the nat POSTROUTING > >chain), both sets are logged there. Truly weird. > > I assume that the -j LOG is at the end of the mangle chain, I.E we are sure > the packets are exiting that chain, very weird.
Yeah, nothing in the mangle chain except the LOG rule. > It appears that iptables > somehow decides that the 202.125.42.141.4569: udp packets don't need to > traverse the nat chain. Indeed. :-( > Hard to know what to try next, check the route table 202.125.x.x isn't a > seperate route is it? Nope, nothing in the route table but the two local segments and the default gateway. I've pinged the netfilter list to see if anyone else has seen anything like this before. Also downgraded iptables to stock woody 1.2.6, but it's exactly the same. I'll let you know if they come up with anything. -G -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
