-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 T, > i have installed opensuse 10 on the gateway of a medium-sized network. i > want the gateway to be able to do packet forwarding and ip masquerading > for only some hosts of the internal network (172.16.0.0/16). in other > words, i want to share the internet connection with only those clients > that i select. using acl-s in squid in not the answer, because i want to > control *all* traffic, not only http or ftp. can this be done using > free/opensource software? Netfilter does everything you will ever need. $ iptables -t nat -A POSTROUTING -s 172.16.0.0/16 -j SNAT --to GateWayIP $ iptables -t nat -A POSTROUTING -j DROP
That should do it fine ... Regards, BG - -- Baishampayan Ghose b.ghose at gmail.com 1024D/86361B74 BB2C E244 15AD 05C5 523A 90E7 4249 3494 8636 1B74 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (GNU/Linux) iD8DBQFEK8JCQkk0lIY2G3QRAn/pAKC57ja2skF+RbUE2id34uSUCJiVaACdGI8E S5QNPC1WB2Vt/3slUkJqIxE= =xjRT -----END PGP SIGNATURE----- -- To unsubscribe, send mail to [EMAIL PROTECTED] with the body "unsubscribe ilug-cal" and an empty subject line. FAQ: http://www.ilug-cal.org/node.php?id=3
