You are not logged in.
Pages: 1
echo 1 > /proc/sys/net/ipv4/ip_forward
iptables -t nat -A POSTROUTING -o enp2s0 -s 10.44.0.0/16 -j MASQUERADE
iptables -I FORWARD -d 10.44.0.0/16 -j ACCEPT
iptables -I FORWARD -s 10.44.0.0/16 -j ACCEPT
Traffic from the local network does not pass through NAT:
iptables-save
Generated by iptables-save v1.8.10 on Fri Mar 8 16:39:06 2024
*nat
:PREROUTING ACCEPT [12733:1134668]
:INPUT ACCEPT [12733:1134668]
:OUTPUT ACCEPT [6586:610540]
:POSTROUTING ACCEPT [6540:605106]
-A POSTROUTING -s 10.44.0.0/16 -o enp2s0 -j MASQUERADE
COMMIT
Completed on Fri Mar 8 16:39:06 2024
Generated by iptables-save v1.8.10 on Fri Mar 8 16:39:06 2024
*mangle
:PREROUTING ACCEPT [310332:239397578]
:INPUT ACCEPT [310331:239397538]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [214072:38102625]
:POSTROUTING ACCEPT [214111:38108049]
COMMIT
Completed on Fri Mar 8 16:39:06 2024
Generated by iptables-save v1.8.10 on Fri Mar 8 16:39:06 2024
*raw
:PREROUTING ACCEPT [310332:239397578]
:OUTPUT ACCEPT [214072:38102625]
COMMIT
Completed on Fri Mar 8 16:39:06 2024
Generated by iptables-save v1.8.10 on Fri Mar 8 16:39:06 2024
*security
:INPUT ACCEPT [310331:239397538]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [214072:38102625]
COMMIT
Completed on Fri Mar 8 16:39:06 2024
Generated by iptables-save v1.8.10 on Fri Mar 8 16:39:06 2024
*filter
:INPUT ACCEPT [42518:22383148]
:FORWARD DROP [0:0]
:OUTPUT ACCEPT [74276:15500400]
:TCP - [0:0]
:UDP - [0:0]
:fw-interfaces - [0:0]
:fw-open - [0:0]
-A FORWARD -s 10.44.0.0/16 -j ACCEPT
-A FORWARD -d 10.44.0.0/16 -j ACCEPT
-A FORWARD -j fw-interfaces
-A FORWARD -j fw-open
-A FORWARD -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
-A fw-interfaces -i enp2s0 -j ACCEPT
-A fw-interfaces -i enp3s0 -j ACCEPT
COMMIT
Last edited by plintus (2024-03-09 12:21:57)
Offline
Pages: 1