Skip to content
    • Welcome to the Linux Foundation Forum!

    nftables, how to redirect all traffic to port 8080 to another ip

    Posts: 1
    edited September 2017 in Networking
    Hi, my router is running on Arch Linux.


    I am trying to redirect all the traffic to port 8080 to my laptop which is hosting http website.


     


    Here is configuration I come up with so far:



    1. table ip nat {
    2.   chain post {
    3.     type nat hook postrouting priority 0; policy accept;
    4.   }
    6.   chain pre {
    7.     type nat hook prerouting priority 0; policy accept;
    8.     dnat to tcp dport map { 8080 : 192.168.0.100 } # handle 3
    9.   }
    10. }

     



    But when I am trying to connect I am being welcomed with this unfriendly message: "<ip address> took too long to respond."


     


    Of course I am using nftables and the loaded modules are below:


     



    1. Module                  Size  Used by
    2. nft_masq_ipv4           1265  1
    3. nf_nat_masquerade_ipv4  2616  1 nft_masq_ipv4
    4. nft_masq                1783  1 nft_masq_ipv4
    5. nft_reject_inet         1814  1
    6. nf_reject_ipv4          2938  1 nft_reject_inet
    7. nf_reject_ipv6          3368  1 nft_reject_inet
    8. nft_reject              2451  1 nft_reject_inet
    9. nf_conntrack_ipv6       8902  2
    10. nf_defrag_ipv6         14899  1 nf_conntrack_ipv6
    11. nft_ct                  4373  2
    12. nf_tables_inet          1618  4
    13. nf_tables_ipv6          2117  1 nf_tables_inet
    14. nft_set_hash           11030  2
    15. nft_set_rbtree          2883  0
    16. nft_meta                5683  9
    17. nft_nat                 2508  1
    18. nft_chain_nat_ipv4      1618  2
    19. nf_conntrack_ipv4       8376  3
    20. nf_defrag_ipv4          1546  1 nf_conntrack_ipv4
    21. nf_nat_ipv4             5204  1 nft_chain_nat_ipv4
    22. nf_nat                 16628  3 nft_nat,nf_nat_masquerade_ipv4,nf_nat_ipv4
    23. nf_conntrack           94166  6 nft_ct,nf_conntrack_ipv6,nf_conntrack_ipv4,nf_nat_masquerade_ipv4,nf_nat_ipv4,nf_nat
    24. nf_tables_ipv4          2053  2 nf_tables_inet
    25. nf_tables              66017  54 nft_ct,nft_nat,nft_chain_nat_ipv4,nft_reject,nft_set_hash,nf_tables_ipv6,nf_tables_ipv4,nft_masq,nft_reject_inet,nft_meta,nft_set_rbtree,nft_masq_ipv4,nf_tables_inet

     



    #systemctl status nftables


    Active: active (exited)


    Main PID: 611 (code=exited, status=0/SUCCESS)

    Welcome!

    It looks like you're new here. Sign in or register to get started.
    Sign In

    Welcome!

    It looks like you're new here. Sign in or register to get started.
    Sign In

    Quick Links

    Categories

    Upcoming Training