nftables 如何将 eth0 接口的流量通过 192.168.100.1:1080 转发?-灵析社区

Midclimateeee

nft add table inet nat nft add chain inet nat prerouting { type nat hook prerouting priority 0 \; } nft add chain inet nat postrouting { type nat hook postrouting priority 100 \; } nft add set inet nat exclude_ips { type ipv4_addr; flags interval; } nft add element inet nat exclude_ips { 192.168.100.1 } nft add rule inet nat prerouting iif "eth0" tcp daddr != @exclude_ips dnat 192.168.100.1:1080 nft add rule inet nat postrouting oif "eth0" masquerade

阅读量:1

点赞量:0

问AI