IPTABLES with NAT and SURICATA IDS on CentOS 7 In this how to we will look into setting up perimeter firewall on the budget. We will make sure IPTABLES forwards all packets to NFQUEUE for scanning. Nat rules will also be setup to forward packets to internal network from outside. 1. Enable routing vi /etc/sysctl.conf