stop IPTABLES from prerouting to local IPs

debian iptables proxmox

Solution 1:

If you only want traffic to the host IP to get NATed somewhere else, it should help to specify the host IP with the -d option in your iptables rule:

-A PREROUTING -i vmbr0 -p tcp -m tcp -d $HOSTIP --dport 2222 -j DNAT --to-destination 192.168.4.100:22

Solution 2:

The ACCEPT target is the equivalent of IGNORE in NAT rules. So to exempt 192.168.0.0/16 (I'm assuming you don't really mean 192.0.0.0/8) addresses from any NAT you could say

iptables -t nat -I PREROUTING 1 -s 192.168.0.0/16 -j ACCEPT

Note that this will exempt those addresses from all NAT rules that follow in the PREROUTING chain.

Related

In-place upgrade Server 2012 R2 to Server 2019 promised, but not available?
Can an iPad 2020 be connected to a USB-C monitor?
Photos smart album for photos with no people at all
iOS - Move Apps from Spotlight Search to Home Screen?
Add currently playing song to Apple Music using AppleScript Editor
Create keyboard shortcuts for touch bar's functions
How to use Macbook pro in clamshell mode with lid open on macos mojave?
Entire "Users" folder is missing when booted into Recovery Mode
Create new Apple ID solely linked to new @icloud.com email?
close all the instances of google chrome except first
Cloudflare warp de-routes 127.0.0.1 How to return it?
How share folder in QEMU with plan9/virtfs between MacOS host and Linux guest?