> I got it working ......... one working example would be: > > iptables -t nat -A OUTPUT -p tcp -o lo -d your.external.firewall.ip --dport > 80 -j DNAT --to-destination 192.168.200.10:80 > > The big trick here is we're tweaking a connection that is being > originated ON the firewall and the connection is TO the firewall. In this > case ( machine connecting to itself ), Linux uses the loopback interface, no > matter which interface the real IP is. So, using the '-o eth0' would make > things never work. But, using it with the loopback interface ( or maybe > without interface ??? ) will make things works very fine ! :) > > Anyway, thanks very much for your reply and hope the example above helps > you if you ever need it :) > > Sincerily, > Leonardo Rodrigues
Hi again Leonardo ! No problemo =) Cool that you got it working there and thanx for your example, it will come in handy. And for the maker out there that made the local nat patch: You deserve a lot of good cookies, I have wanted that feature for long =) Regards /Micke
