Ping a Specific Port

Question

Scott Forsyth

Asked: 2010-01-26 20:07:05 +0800 CST2010-01-26 20:07:05 +0800 CST 2010-01-26 20:07:05 +0800 CST

Why isn't ICMP routing with iptables nat routing

772

I'm using iptables on Ubuntu server to route a public IP to a private IP. I want to nat all traffic, including 80, 443 and ICMP.

However, it appears that ICMP isn't routing. I have a steady ping going to the public IP and it never stops, even with NAT pointing to a bogus IP.

Here are the rules that I'm using:

iptables -t nat -I PREROUTING -d 206.72.119.76 -j DNAT --to-destination 10.240.5.5  
iptables -t nat -I POSTROUTING  -s 10.240.5.5 -j SNAT --to-source 206.72.119.76

I tried with rules for ICMP specifically, but no such luck:

iptables -t nat -I PREROUTING -d 206.72.119.76 - icmp --icmp-type echo-request -j DNAT --to-destination 10.240.5.5

Any ideas?

1 Answers

Voted

jdizzle · Answer 1 · 2010-03-08T20:26:46+08:00

Best Answer

jdizzle

2010-03-08T20:26:46+08:002010-03-08T20:26:46+08:00

Have you done any pcapping to see if the icmp packets are getting NAT'd and sent out again? Maybe they're just being accepted by the box you're running iptables on.

0

Why isn't ICMP routing with iptables nat routing

Ping a Specific Port

How do I tell Git for Windows where to find my private RSA key?

How do you restart php-fpm?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Resolve host name from IP address

How can I sort du -h output by size

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?