You answered the question I asked. That is indeed how to see the nat table,
but I asked the wrong question. Let me try again.
For instance, on a Cisco router I can type "sh ip nat tr" for "SHow me the IP
NAT TRanslation table" (more generic use of the word table), and it spits to
the console something like:
Pro Inside global Inside local Outside local Outside global
tcp 65.35.x.x:2679 192.168.250.33:2624 207.46.x.x:80 207.46.x.x:80
udp 65.35.x.x:64012 192.168.250.20:64012 192.112.x.x:53 192.112.x.x:53
The above list can get pretty long, not just two lines. But it shows the
"table" of translations, addy for addy, port for port, that it is making to
be able to do NAT.
Can I get similar information out of my Linux box?
On Wednesday 12 December 2001 03:36 pm, you wrote:
> On Wed, 2001-12-12 at 15:11, Greg Schmidt wrote:
> > Couldn't find this in any docs. I want to see the NAT table. See what
> > addys/ports are mapped to what addys/ports so netfilter can keep track of
> > how to mangle the IP headers. iptables -L -v only lists the rule set.
> > The SNAT is working, so that info has to be somewhere inside of that
> > stupid, plastic box. How do I tell it to show me what it is?
>
> iptables -t nat -vnL
>
> The default 'filter' table is viewed if you don't specify what table you
> want to see with the '-t' option. So:
>
> iptables -vnL
>
> is the same as
>
> iptables -t filter -vnL
>
> There is also a 'mangle' table, but you're unlikely to use that one in
> day-to-day use.
This archive was generated by hypermail 2.1.3 : Fri Aug 01 2014 - 20:12:02 EDT