-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Your statement looks fine to me. One thing I've run into, is that if you have other iptable rules that have been catching those requests, the ip_conntrack table will often stop new requests from triggering your new rule. I've often added a new rule, tried to test it, eventually giving up, only to find that I just needed to wait 5 minutes for the cached session to go away. Try grepping /proc/net/ip_conntrack for requests to that ip:port, and try hitting it again once there is no more mention in there of it. HTH, kyle. Kyle Bresin [EMAIL PROTECTED] PGP Key: http://101010.org/kyle/mypubkey.asc On Thu, 15 Feb 2007, [EMAIL PROTECTED] wrote: > hi, > i am trying to do portforwarding using iptables with this rule: -s 0.0.0.0/0 > -d 1.2.3.4/32 -i eth0 -p tcp --dport 8080 -j DNAT --to 192.168.0.30:80 and > fail. Please help me and thanks for the reply. > > Regards > > > Willy > _______________________________________________ > tsl-discuss mailing list > [email protected] > http://lists.trustix.org/mailman/listinfo/tsl-discuss > -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.6 (GNU/Linux) iD8DBQFF1ADUv/SZJHS1KE8RApa1AKCuOm3dd0VLS/XRmCMEVFksmPoknwCfWQeG OfC0OLjJBRKfG1o1fbfO0ME= =6Fr0 -----END PGP SIGNATURE----- _______________________________________________ tsl-discuss mailing list [email protected] http://lists.trustix.org/mailman/listinfo/tsl-discuss
