Quote:
Originally Posted by Niceman2005
Initially i had the MASQUERADE, but then i changed it to SNAT because i need the DNAT to the internal webserver
|
that's pretty weird IMHO... my guess is there was something else going-on preventing it from working...
Quote:
As for that...i also can't remember what is it for, I supposed without this line everything will stil work as normal.
|
yes, i would suggest you eliminate that line completely... it would allow non-root users to make UDP daemons listen on your box using any port between 10001 and 65535...