On 28 Jan 99, at 17:37, [EMAIL PROTECTED] wrote about
"Re: [masq] FTP and firewalls":
| Fred,
|
| From reading into what was said below: When using routing rules - masquerading is not
| needed... correct?
I'm no expert, and I'm not sure I really understand your question,
but:
Masquerading is needed when you want to connect machines on a local
network, which uses non-routable or otherwise invalid IP addresses,
to the Internet. In that case the firewall/gateway/router machine
has to re-write the headers of outgoing packets to replace the
internal IP addresses with its own, valid, external IP address. And
vice-versa, for replies.
On Linux, masquerading is implemented as a feature of IP forwarding
(aka gatewaying, forwarding packets from one interface to another),
which may be what you mean by "routing rules".
OTOH, if the machines on the internal network have valid, routable IP
addresses and the gateway machine is just being a firewall/router, no
masquerading is needed.
Does that answer?
BTW, I'm not on the linux-net list, I was replying to a message cross-
posted to the masq list.
|...
- Fred Viles <mailto:[EMAIL PROTECTED]>
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
