1 |
In <200801161423.38386.alan.mckinnon@×××××.com> alan.mckinnon@×××××.com (Alan McKinnon) writes: |
2 |
|
3 |
>On Wednesday 16 January 2008, Mick wrote: |
4 |
>> On Sunday 13 January 2008, Konstantinos Agouros wrote: |
5 |
>> > Hi, |
6 |
>> > |
7 |
>> > I have a box running vmware server where I need some DNAT rules to |
8 |
>> > get traffic from a vm to where it belongs. Inserting the rule |
9 |
>> > iptables -t nat -I PREROUTING -s ... -d ... -p tcp --dport ... -j |
10 |
>> > DNAT --to-destination destaddr |
11 |
>> > |
12 |
>> > gives me: |
13 |
>> > |
14 |
>> > iptables: No chain/target/match by that name |
15 |
>> |
16 |
>> before --dport you may need the match option: -m --dport 1234 -j |
17 |
>> DNAT .... |
18 |
|
19 |
>no, his syntax is OK |
20 |
|
21 |
>> You might also need to specify a policy for PREROUTING before |
22 |
>> inserting the rule (but I'm not sure). Try these suggestions one at |
23 |
>> a time and see what gives. |
24 |
|
25 |
>That doesn't matter, a chain always has a policy (ACCEPT by default). |
26 |
|
27 |
>Most likely he doesn't have the correct module loaded int he kernel |
28 |
As I said, the fact that iptables -L (after a fresh reboot) does not do |
29 |
anything puzzles me a bit. What would be the right module in Your opinion? |
30 |
Also is there a kernel configuration option I might have overseen? |
31 |
|
32 |
Regards, |
33 |
|
34 |
Konstantin |
35 |
|
36 |
|
37 |
>-- |
38 |
>Alan McKinnon |
39 |
>alan dot mckinnon at gmail dot com |
40 |
>-- |
41 |
>gentoo-user@l.g.o mailing list |
42 |
|
43 |
-- |
44 |
Dipl-Inf. Konstantin Agouros aka Elwood Blues. Internet: elwood@×××××××.de |
45 |
Otkerstr. 28, 81547 Muenchen, Germany. Tel +49 89 69370185 |
46 |
---------------------------------------------------------------------------- |
47 |
"Captain, this ship will not survive the forming of the cosmos." B'Elana Torres |
48 |
-- |
49 |
gentoo-user@l.g.o mailing list |