On Mon, Mar 31, 2025 at 11:19:31AM -0500, Bradley Hook wrote: [...] > The issue we are seeing is that packets from 192.168.122.252 to > 8.8.8.8 are not traversing the postrouting chain at all. We can see > the packets leaving the interface without NAT applied. We can see the > packets hitting the forward chain with the trace. Other traffic from > other subnets are being masqueraded just fine. We just aren't seeing > the packets from 192.168.122.x/24 hit any postrouting rules at all. Can you check if connection tracking is tagging these packets as invalid?
