From mboxrd@z Thu Jan 1 00:00:00 1970 From: Maciej Soltysiak Subject: Re: Help... Date: Wed, 18 Dec 2002 17:00:03 +0100 (CET) Sender: netfilter-admin@lists.netfilter.org Message-ID: References: <20021218152354.94938.qmail@web13702.mail.yahoo.com> Mime-Version: 1.0 Return-path: In-Reply-To: <20021218152354.94938.qmail@web13702.mail.yahoo.com> Errors-To: netfilter-admin@lists.netfilter.org List-Help: List-Post: List-Subscribe: , List-Id: List-Unsubscribe: , List-Archive: Content-Type: TEXT/PLAIN; charset="us-ascii" Content-Transfer-Encoding: 7bit To: manish Cc: netfilter@lists.netfilter.org > >iptables -t nat -A PREROUTING -i ppp0 -j DNAT > --to-destination 192.168.101.3 > > This time i am able to call people from outside from > machine C (192.168.101.3)and also able to do voice > conversation in vat. But another side A and D are not > able to talk to that person outside the network. Also This looks obvious, as all the traffic comming back to you from the Internet you are directing to C. All, means, initiated by host A or B too. > 1) What should i do so A, C, and D all together can > use to call outside and able to do voice > conversation > in vat or vive-versa? You would need a nat_helper for that protocol, so the router stores connection information and knows which packets should be sent to whom. You could try directing the traffic from that protocol to a local broadcast address (specify the port of the service), maybe the applications can manage to filter out their packets somehow by ID's. What chat protocol is that? Regards, Maciej Soltysiak