On Sunday 09 June 2002 5:04 pm, Richard A Downing wrote: > > > If I command: iptables -t nat -A POSTROUTING -o ppp0 -j > > > SNAT --to 62.255.122.217 then this happens: > > > > > > iptables -t nat --list > > > Chain POSTROUTING (policy ACCEPT) > > > target prot opt source destination > > > SNAT all -- anywhere anywhere > > > to:192.168.1.0 > > > > What is the local address of ppp0 at the time you did this ?
> A route -n gave: > > Kernel IP routing table > Destination Gateway Genmask Flags Iface > 62.255.122.217 0.0.0.0 255.255.255.255 UH ppp0 > 192.168.1.0 0.0.0.0 255.255.255.0 U eth0 > 0.0.0.0 62.255.122.217 0.0.0.0 UG ppp0 (Excuse my reformatting of that to avoid line breaks) It looks to me like 62.255.122.217 is the address at the remote end of your ppp link, not the local end. What does the output of ifconfig ppp0 tell you ? I think you're trying to tell netfilter to SNAT to an address which is not on the interface. I don't know what it's supposed to do if you try this. By the way, is ppp0 a serial interface (eg modem), or is it associated with eth0 somehow ? I wonder why netfilter used the address of eth0 to masquerade behind.... Antony.
