| Server IP : 79.136.114.73 / Your IP : 3.147.48.123 Web Server : Apache/2.4.7 (Ubuntu) PHP/5.5.9-1ubuntu4.29 OpenSSL/1.0.1f System : Linux b8009 3.13.0-170-generic #220-Ubuntu SMP Thu May 9 12:40:49 UTC 2019 x86_64 User : www-data ( 33) PHP Version : 5.5.9-1ubuntu4.29 Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority, MySQL : ON | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : ON Directory : /usr/share/doc/iptables/html/ |
Upload File : |
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN"> <HTML> <HEAD> <META NAME="GENERATOR" CONTENT="LinuxDoc-Tools 0.9.69"> <TITLE>Linux 2.4 NAT HOWTO: Caveats on NAT</TITLE> <LINK HREF="NAT-HOWTO-9.html" REL=next> <LINK HREF="NAT-HOWTO-7.html" REL=previous> <LINK HREF="NAT-HOWTO.html#toc8" REL=contents> </HEAD> <BODY> <A HREF="NAT-HOWTO-9.html">Next</A> <A HREF="NAT-HOWTO-7.html">Previous</A> <A HREF="NAT-HOWTO.html#toc8">Contents</A> <HR> <H2><A NAME="s8">8.</A> <A HREF="NAT-HOWTO.html#toc8">Caveats on NAT</A></H2> <P>If you are doing NAT on a connection, all packets passing <B>both</B> ways (in and out of the network) must pass through the NAT'ed box, otherwise it won't work reliably. In particular, the connection tracking code reassembles fragments, which means that not only will connection tracking not be reliable, but your packets may not get through at all, as fragments will be withheld.</P> <HR> <A HREF="NAT-HOWTO-9.html">Next</A> <A HREF="NAT-HOWTO-7.html">Previous</A> <A HREF="NAT-HOWTO.html#toc8">Contents</A> </BODY> </HTML>