Wednesday, March 17, 2021

Using firewalld to NAT/port forward based on source IP?

Hello

Im looking to NAT/port foward traffic based on source IP.

I thought this was enough:

firewall-cmd --permanent --add-rich-rule="rule family=\"ipv4\" source address=\"192.168.100.221\" forward-port port=\"514\" protocol=\"udp\" to-port=\"9200\""

But it doesnt seem to be working.

Running a traffic capture, I see the traffic arrive on 514 but I cant seem to find a way to see if the NAT/port forward happens.



No comments:

Post a Comment