Iptables v1.8.7 (nf_tables): unknown option "--to-ports"

pavelgl · January 26, 2023, 3:15pm

With or without option dest '*', the rule will be created in the dstnat_lan chain, redirecting all tcp traffic originating from the lan to port 1111 on the router.

table inet fw4 {
        chain dstnat_lan {
                meta nfproto ipv4 tcp dport 0-65535 counter packets 0 bytes 0 redirect to :1111 comment "!fw4: inna_redirect"
        }
}

EDIT:

Sorry, I overlooked that

I meant this to be cleared

inna:

/dev/stdin:149:47-50: Error: transport protocol mapping is only valid after transport protocol match
                ip saddr 192.168.1.0/24 counter redirect to 1111 comment "!fw4: inna_redirect"

lleachii · January 26, 2023, 3:16pm

(My bad, was still thinking iptables).

elevenkongqian · January 30, 2023, 2:36pm

you can opkg iptables-mod-nat-extra like this:

janezhangoo · February 7, 2023, 2:52pm

Thanks so much, I fixed by install it.