openstack team mailing list archive

[Alessandro Tagliapietra <tagliapietra.alessandro@xxxxxxxxx>]

Hello guys, i've associated a floating ip to an instance, this is ip addr result:

2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP qlen 1000
    link/ether 00:30:48:fc:4c:92 brd ff:ff:ff:ff:ff:ff
    inet publicip/24 brd 188.165.225.255 scope global eth0
    inet floatingip/32 scope global eth0:1
    inet6 fe80::230:48ff:fefc:4c92/64 scope link 
       valid_lft forever preferred_lft forever

as you can see the floating ip is there, binded to eth0, now i was trying to know why dnat wasn't working, i've tried to add a catch-all log rule into the first table and chain iptables process with this command:

iptables -t mangle -D PREROUTING -j LOG --log-prefix="PREROUTING: "

and i looking at logs i can see all packets except those with destination set to floatingip, also -v shows no hits to the dnat rule but i can see packets on eth0 with tcpdump.
Any idea why packets are not reaching the dnat rule?

Best