|
To all the routing gurus,
I need to have a 1:1 NAT, that means NOT
masquerading!
I setup up the following commands:
ip route add nat 12.34.56.150 via
192.168.10.50
ip rule add from 192.168.10.50 nat 12.34.56.150 ip route add nat 12.34.56.151 via
192.168.10.51
ip rule add from 192.168.10.51 nat 12.34.56.151 and rule list is:
wally:~ # ip rule
list
0: from all lookup local 32764: from 192.168.10.51 lookup main map-to 12.34.56.151 32765: from 192.168.10.50 lookup main map-to 12.34.56.150 32766: from all lookup main 32767: from all lookup 253 I can now send a ping from 192.168.10.50 to
12.34.56.151and get an answer.
But on all other services (i have tested netbios,
ftp and starcraft) I can not get a connection.
If I use only internal addresses, it works.
Unfortunately I need to use external addresses from the inner side.
I believe there is a routing problem which I can't
solve without any help or a hint :)
thanks for any help
Thomas Angst
|
