| 1 |
In <200801161423.38386.alan.mckinnon@×××××.com> alan.mckinnon@×××××.com (Alan McKinnon) writes: |
| 2 |
|
| 3 |
>On Wednesday 16 January 2008, Mick wrote: |
| 4 |
>> On Sunday 13 January 2008, Konstantinos Agouros wrote: |
| 5 |
>> > Hi, |
| 6 |
>> > |
| 7 |
>> > I have a box running vmware server where I need some DNAT rules to |
| 8 |
>> > get traffic from a vm to where it belongs. Inserting the rule |
| 9 |
>> > iptables -t nat -I PREROUTING -s ... -d ... -p tcp --dport ... -j |
| 10 |
>> > DNAT --to-destination destaddr |
| 11 |
>> > |
| 12 |
>> > gives me: |
| 13 |
>> > |
| 14 |
>> > iptables: No chain/target/match by that name |
| 15 |
>> |
| 16 |
>> before --dport you may need the match option: -m --dport 1234 -j |
| 17 |
>> DNAT .... |
| 18 |
|
| 19 |
>no, his syntax is OK |
| 20 |
|
| 21 |
>> You might also need to specify a policy for PREROUTING before |
| 22 |
>> inserting the rule (but I'm not sure). Try these suggestions one at |
| 23 |
>> a time and see what gives. |
| 24 |
|
| 25 |
>That doesn't matter, a chain always has a policy (ACCEPT by default). |
| 26 |
|
| 27 |
>Most likely he doesn't have the correct module loaded int he kernel |
| 28 |
As I said, the fact that iptables -L (after a fresh reboot) does not do |
| 29 |
anything puzzles me a bit. What would be the right module in Your opinion? |
| 30 |
Also is there a kernel configuration option I might have overseen? |
| 31 |
|
| 32 |
Regards, |
| 33 |
|
| 34 |
Konstantin |
| 35 |
|
| 36 |
|
| 37 |
>-- |
| 38 |
>Alan McKinnon |
| 39 |
>alan dot mckinnon at gmail dot com |
| 40 |
>-- |
| 41 |
>gentoo-user@l.g.o mailing list |
| 42 |
|
| 43 |
-- |
| 44 |
Dipl-Inf. Konstantin Agouros aka Elwood Blues. Internet: elwood@×××××××.de |
| 45 |
Otkerstr. 28, 81547 Muenchen, Germany. Tel +49 89 69370185 |
| 46 |
---------------------------------------------------------------------------- |
| 47 |
"Captain, this ship will not survive the forming of the cosmos." B'Elana Torres |
| 48 |
-- |
| 49 |
gentoo-user@l.g.o mailing list |
Archives