Iptables rule

psix · 11-03-2010, 04:36 AM

Good afternoon,

after applying the rules for asterisk. After several hours rule stops working. What could it be?

That rule itself:

iptables-t nat-A PREROUTING-p udp-d 192.168.1.1 - dport 5060-j DNAT - to-destination 192.168.1.2

I have Centos 5.5 and Iptables v1.3.5 ..

Please HELP ...

module0000 · 11-03-2010, 11:15 AM

After it stops working, does `iptables -t nat -L -v -n` still show your rule as present? If so, is the rule counter still incrementing?

psix · 11-08-2010, 01:39 AM

Hi , i check rule:

hain PREROUTING (policy ACCEPT 671K packets, 62M bytes)
pkts bytes target prot opt in out source destination
642 240K DNAT udp -- * * 0.0.0.0/0 217.23.132.82 udp dpt:5060 to:217.23.132.83

Chain POSTROUTING (policy ACCEPT 345K packets, 22M bytes)
pkts bytes target prot opt in out source destination

Chain OUTPUT (policy ACCEPT 345K packets, 22M bytes)
pkts bytes target prot opt in out source destination

after i try to connect:

Chain PREROUTING (policy ACCEPT 672K packets, 62M bytes)
pkts bytes target prot opt in out source destination
642 240K DNAT udp -- * * 0.0.0.0/0 217.23.132.82 udp dpt:5060 to:217.23.132.83

Chain POSTROUTING (policy ACCEPT 345K packets, 22M bytes)
pkts bytes target prot opt in out source destination

Chain OUTPUT (policy ACCEPT 345K packets, 22M bytes)
pkts bytes target prot opt in out source destination

I think rule not working......

(

How i fix this ?

psix · 11-08-2010, 01:50 AM

After some time i have:

Chain PREROUTING (policy ACCEPT 674K packets, 62M bytes)
pkts bytes target prot opt in out source destination
644 242K DNAT udp -- * * 0.0.0.0/0 217.23.132.82 udp dpt:5060 to:217.23.132.83

Chain POSTROUTING (policy ACCEPT 347K packets, 22M bytes)
pkts bytes target prot opt in out source destination

Chain OUTPUT (policy ACCEPT 347K packets, 22M bytes)
pkts bytes target prot opt in out source destination