Red Hat Bugzilla – Bug 113557
iptables NAT (MASQ) not working right after upgrade from 2.4.20-20.7 to 2.4.20-28.7
Last modified: 2005-10-31 17:00:50 EST
Description of problem:
After upgrading the kernel from 2.4.20-20.7 to 2.4.20-28.7 the iptables
MASQUERADE target in the POSTROUTING chain (nat table) stopped working, if an
output interface is specified.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
0. assumed your local network is 192.168.1.0/24 and that should be SNATted to the
address of eth1
1. 'iptables -t nat -I POSTROUTING -s 192.168.1.0/24 -j MASQUERADE' *works*
2. 'iptables -t nat -D POSTROUTING 1' *delete rule from step 1*
3. 'iptables -t nat -I POSTROUTING -s 192.168.1.0/24 -o eth1 -j MASQUERADE'
*does not work*
un-NAT-ted packets (with private IP source addresses) go out on eth1 (public
Source NAT to IP address of eth1
The error occurred after upgrading the kernel via rhn, the configuration that worked
with the "old" kernel was NOT changed.
Thanks for the bug report. However, Red Hat no longer maintains this version of
the product. Please upgrade to the latest version and open a new bug if the problem
The Fedora Legacy project (http://fedoralegacy.org/) maintains some older releases,
and if you believe this bug is interesting to them, please report the problem in
the bug tracker at: http://bugzilla.fedora.us/