Curious behavior of iptables and masquerading

To: debian-user@lists.debian.org
Cc: Mark Phillips <mark@infoeng.flinders.edu.au>
Subject: Curious behavior of iptables and masquerading
From: Mark Phillips <mark@ist.flinders.edu.au>
Date: Sun, 3 Dec 2000 12:23:38 +1030 (CST)
Message-id: <[🔎] Pine.GSO.4.10.10012031215410.23803-100000@kurango>

I noticed that if I run:

iptables -t nat -P POSTROUTING DROP
iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE
iptables -t nat -A POSTROUTING -s 192.168.1.0/24 -j ACCEPT

then masquerading works, but if I run the last two commands in the
opposite order (so that they appear in the opposite order on the chain
list) then masquerading doesn't work.

Can anyone explain to me why?  I wouldn't have thought it would make any
difference.

Cheers,

Mark.



_/~~~~~~~~___/~~~~~~____________________________________________________
____/~~_____/~~__/~~__________________________Mark_Phillips____________
____/~~_____/~~________________________________mark@ist.flinders.edu.au_
____/~~\HE___/~~__/~~\APTAIN_____________________________________________
____/~~______/~~~~~~____________________________________________________
__________________________________________________________________________
        "They told me I was gullible ... and I believed them!"

Reply to:

Prev by Date: 3dfx kernel module
Next by Date: Re: Email cleanup
Previous by thread: Re: 3dfx kernel module
Next by thread: Quake installation
Index(es):
- Date
- Thread