Thanks for the input.
On Monday, June 4, 2001, at 10:26 PM, Randy Kramer wrote:
> This is probably a bad clue, but I thought I'd throw it out and see if
> it might be workable: How about adding a line to your routing table to
> set up the internet address (123.456.78.90) as a gateway to subnet
> 192.168.100.0/24?
Tried that, didn't work. Unfortunately the pack is not translated for
the new network and gets thrown out onto the net as a packet bound for
192.168.100.?... Not good.
I have actually got the answer now, I think. What I need to do is
masquerade the packet, then port forward it to the port that it came in
on, on the target host. ipchains can't do this, but someone put me onto
ipmasqadm, which looks like it can. iptables can do it too, but the
gateway in question is running a 2.2 kernel.
Thanks people. If anyone notices a glaring flaw in my logic, feel free
to put it out.
> I can't tell you more about how to do it -- is there a command like
> addroute or routeadd, or can you do this in netconf?
>
> And, I don't know if it will work,
>
> And, if it does work to get the packets there, I'm not sure that the
> internet machines will do something useful with them or just attempt to
> send them back to you (or /dev/null).
>
> Sorry, I know I'm not being real helpful, more curious than anything,
> Randy Kramer
> Nathan Callahan wrote:
>>
>> I've got a problem which must be solved by tomorrow.
>>
>> I need to be able to take all packets bound for a particular local
>> subnet (eg 192.168.100.0/24) and instead send them off (probably using
>> GRE encapsulation) to an internet address (eg 123.456.78.90) instead.
>>
>> I cannot set up a VPN at the moment, it will be done in the near
>> future.
>>
>> If anyone has a good clue on this one, please tell me.
>>
>> Nathan Callahan
>
