Re: IPTables help

From: Migrating Coconut (
Date: 12/08/02

From: "Migrating Coconut" <>
Date: Sun, 08 Dec 2002 21:49:30 GMT



"Sleepy" <> wrote in message
> The OUTPUT chain is for packets going out from the machine running as
> firewall.
> POSTROUTING is for packets that need to be massaged before they are sent
> out.
> I belive what yu asking is, the DNAT rules go where?
> in my setup, 4 machines behind the firewall box , I have
> #iptables -t nat -A POSTROUTING -o $EXT -j MASQUERADE
> I hope this helpes. dont forget the state i.e
> iptables -A FORWARD -i $INT -o EXT -m state --state
> Migrating Coconut wrote:
> > I'm starting to work out the rule sets for a Linux IPTables firewall
> > for
> > my home network. I'll be using IP masquerading to give the internal
> > machines internet access. I have the basic rules down, but the
> > part confuses me a little. If I'm doing a DNAT rule, do I put the rule
> > the POSTROUTING or OUTPUT chain? I have info on how to build the rules,
> > but I can't find any on where to put them and how the tables relate to
> > each
> > other. Any information you could provide would be wonderful. Thanks in
> > advance,
> >
> > mc
> --
> ".. and God said let be a command line, and there be a command line.After
> God made the command line He liked the the shell prompt. and wanted to
> some notes and God said let there be an editor, and there be "vi" "