lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <13415942.2991221415283525.JavaMail.root@mail.yanbulink.net>
Date:	Sun, 14 Sep 2008 21:01:23 +0300 (AST)
From:	"Wennie V. Lagmay" <wlagmay@...bulink.net>
To:	Phil Oester <kernel@...uxace.com>
Cc:	linux-kernel@...r.kernel.org
Subject: Re: Kernel upgarde causes IPTABLES SAME not working for me

Hi Phil,

Thank you very much for your reply. I tried using SNAT "iptables -t nat -A POSTROUTING -s 192.168.10.0/24 -j SNAT --to-source 10.10.10.1-10.10.10.2" and surely this configuration can enable NATting between multiple private IP and multiple Public IP, however voice chat is not working (yahoo and msn messenger). Masquerade is working fine with voice chat however If i am not mistaken it's a multiple private to single public IP NATting. 


I have read that SAME is already obsoletes and according to an article NAT features works same as SAME but I dont know how to configure it. Can you please guide me how to use SNAT with multiple private IP to multiple Public IP that works the same as SAME target.

Again thank you very much and best regards,

Wennie

Please don't forget to put me on Cc:



----- Original Message -----
From: "Phil Oester" <kernel@...uxace.com>
To: "Wennie V. Lagmay" <wlagmay@...bulink.net>
Cc: linux-kernel@...r.kernel.org
Sent: 14 September 2008 19:43:49 o'clock (GMT+0300) Asia/Kuwait
Subject: Re: Kernel upgarde causes IPTABLES SAME not working for me

On Sun, Sep 14, 2008 at 03:04:11PM +0300, Wennie V. Lagmay wrote:
> Dear all, 
> 
> I am having a problem with the recent version of kernel (2.6.25-14-108) on Fedora Core 9 64 bit.
> I am trying to enable the NATting using SAME command but I am getting an error "Iptables: No chain/target match by this name" but with earlier version of linux 2.6.23.1-42 iptables with SAME target is working; "iptables -t nat -A POSTROUTING -s 192.168.10.0/24 -j SAME --to 10.10.10.1-10.10.10.2 --nodst"

The SAME target has been removed from the kernel, and no longer
exists in 2.6.25.  You will have to use the SNAT or MASQUERADE
targets.

Phil

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ