How to add NAPT/PAT rule?

My goal is to forward packets from an interface to another interface without source port conflicts using the right feature, NAPT.

I couldn't find how to add a NAPT rule (Network Address Port Translation or also known as PAT) with iptables and nftables.

More interestingly, searching combinations of PAT NAPT iptables/nftables/netfilter doesn't give anything relevant. Even when they mention PAT/NAPT, they do a simple IP masquerading...

Edit

It seems iptables's NAT does implicit port translation... somehow it's obvious for everybody even though it isn't written anywhere. The definition of NAT is however pretty clear and doesn't include a layer 4 alteration. Whatever...

Solution

By using iptables, masquerade is a choice but may not fullfill your goals. The better method is to extend netfilter and iptables by writing your own iptable operation. I do this some years before, here is my github code, hope that can help you.

Is there a way for non-root processes to bind to "privileged" ports on Linux?
Docker server networking - reject incoming connections but allow outgoing
iptables rules for jupyter notebook
Iptables v1.4.14: can't initialize iptables table `nat': Table does not exist (do you need to insmod?)
Restrict connections to the Docker daemon - What should be the value of ext_if
What is the best practice of docker + ufw under Ubuntu
Logging Dropped Packets in IPTables?
Connection refused to MongoDB errno 111
Rancher 1.6 port forwarding on any host forwards to host with rancher/server installed
ICMP request not been forwarded by NAT instance
What is the best way to forward all requests on a certain port to another machine on the network?
DNAT translation in iptables for TCP connections
iptables rate limiting connection request
Docker containers with bridge network cannot ping anything (even default gateway)
rsyslog - Property-based filtering not working
iptables LOG and DROP in one rule
Docker ignores iptable rules when using "-p <port>:<port>"
Docker: How to re-create dockers additional iptables rules?
nftables rules for docker
Prevent prompt when `apt install -y iptables persistent` on Debian/Ubuntu
Not sure how to properly use variables and use them in if statements in bash scripting
Change port number while forwarding
How to add rule with IPTables.Net to iptables in real system with .NET 6 Web API
best way to check if a iptables userchain exist
SSL installed on Apache2 but HTTPS not working
Ununtu 20 + Rancher 1.6 — 80 port issue
ufw seems not to block all ports (Ubuntu with Docker)
Programmatically use iptables-restore when special character exists in log-prefix
Docker chain in iptables overrides INPUT rules
Bash Script Block All Apple Devices