hi. that's an interesting question. why don't prerouted ports show up as open, neither with netstat -l nor with nmap? is this effect of any further security use, or are there better tools, that can dedect those ports as well? thanks and ciao, ub Jule Slootbeek wrote:
Tarragon, a pair of these rules: (eth0: external) iptables -A FORWARD -m state --state NEW -p tcp -i eth0 -d 192.168.0.2 --dport 2401 iptables -t nat -A POSTROUTING -i eth0 -p tcp --dport 2401 -j DNAT --to-destination 192.168.0.1:2401 still does not show the port 2401 open with an nmap localhost op thegateway.