[PVE-User] NAT Problems with PVE Firewall
Yannick Palanque
yannick.ml at palanque.name
Wed Jun 21 21:10:12 CEST 2017
Le 2017-06-21 18:26, Elias Werberich a écrit :
> Using SNAT instead of MASQUERADE does not solve the problem.
> In a pve-devel thread [2] I read that the following rules should help,
> but it does not work either.
>
> post-up iptables -t raw -A PREROUTING -s '10.0.0.0/24' -i vmbr12
> -j CT --zone 1
> post-up iptables -t raw -A PREROUTING -d '10.0.0.0/24' -i vmbr12
> -j CT --zone 1
Hello,
I use
post-up iptables -t raw -I PREROUTING -i fwbr+ -j CT --zone 1
and I have no problem with NAT and FW.
Regards,
Yannick Palanque
More information about the pve-user
mailing list