Postado originalmente por
diogotrc
Deveria ficar assim?
Flags: X - disabled, I - invalid, D - dynamic
0 ;;; Conectividade Social - Caixa Economica Federal
chain=dstnat dst-address=200.201.174.0/24 action=accept
1 ;;; Radio UOL
chain=dstnat dst-address=200.154.0.0/16 action=accept
2 ;;; Radio Terra
chain=dstnat dst-address=200.221.0.0/16 action=accept
3 ;;; Redir
chain=dstnat in-interface=CeuAzul2 protocol=tcp dst-port=80 action=redirect to-ports=3128
4 chain=dstnat in-interface=CeuAzul3 protocol=tcp dst-port=80 action=redirect to-ports=3128
5 chain=dstnat in-interface=CeuAzul4 protocol=tcp dst-port=80 action=redirect to-ports=3128
6 ;;; NAT
chain=srcnat out-interface=ether1 src-address=10.2.1.1 action=masquerade
7 chain=srcnat out-interface=ether1 src-address=10.3.1.1 action=masquerade
8 chain=srcnat out-interface=ether1 src-address=10.4.1.1 action=masquerade
9 ;;; masquerade hotspot network
chain=srcnat src-address=10.2.1.0/24 action=masquerade
10 chain=srcnat src-address=10.3.1.0/24 action=masquerade
11 chain=srcnat src-address=10.4.1.0/24 action=masquerade