Zdrawej Widiah che weche sa napisali za reshenieto na problema i to s primer. Naistina weche izglezda prosto. Pri men towa raboti. _______________________________________________ [root@gk ~]# cat nat_ #!/bin/sh EXT=eth0 INT=eth1 INT_IP_1=192.168.0.10 EXT_IP_1=172.16.31.110 iptables -t nat -F ip addr add 172.16.31.110/16 brd + dev eth0 label eth0:nat iptables -t nat -I POSTROUTING -s $INT_IP_1 -o eth0 -j SNAT --to-source $EXT_IP_1 iptables -t nat -A PREROUTING -d $EXT_IP_1 -j DNAT --to-dest $INT_IP_1 _________________________________________________________ Za linux 2.2 reshenieto e s "ip" komandata i se wizda po nadolu w pismoto.
Qsin wrote: > > Ako iskash pusni v lista nastrojkite kakto ti si gi napravil. > Da se ponauchim i nie :) > > Yavor Atanasov > > ----- Original Message ----- > From: "Nikolay Kabaivanov" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Wednesday, December 19, 2001 11:36 AM > Subject: Re: lug-bg: Problemi pri linux 2.4 i NAT sus iptables > > > Zdrawejte > > Neshtata sus NAT-a w 2-te posoki potegliha, wse oshte testwam systemata > > no wsicko izglezda normalno i raboteshto. > > Wupreki che ne e opisano kato che li nikude w dokumentite w internet > > zadulzitelno traibwa da ima > > pusnat SNAT i DNAT na edno i sushto IP za da raboti korektno i w dwete > > posoki. > > George Danchev <[EMAIL PROTECTED]> mi oburna wnimanie za alias-a na > > interfasa. > > Towa e opisano w HOWTO-to - zadulzitelno e da imash wdignat alias ako > > iskash da prawish SNAT ne ot IP adresa na mashinata. > > > > Za linux 2.2 polzwam takwa 2 posochna translacia (kakwato iskash sus > > iptables) i tia stawa po slednia nachin : > > /sbin/ip route add nat ext_IP via int_IP > > /sbin/ip rule add prio 320 from int_IP nat ext_IP > > I ne e nuzno da se wdiga aliasna interface za razlika ot linux 2.4 > > Blagodaria na wsicki za otgoworite im. > > > > Boyan Krosnov wrote: > > > > > > Do kolkoto poznawam Linux NAT-a ot 2.2 sweta, shte trqbwa paketite za > > > otwarqne na konekcii ot wyn (po otnoshenie na NATa) nawytre da se > > > matchnat ot nqkakwo ipchains(iptables) prawilo, koeto da kaje kakwo da > > > se prawi s tqh (primerno DNAT). > > > W Linux NATa (do kolkoto go poznawam) nqma "full translations" t.e. nqma > > > wyzmojnost w NAT tablicata da pishe "wseki port na ip1 otwyn da se > > > premapwa na wseki port na IP2 wytre". > > > BR, > > > Boyan Nikolay Kabaivanov, [EMAIL PROTECTED] University of Rousse, Bulgaria =========================================================================== A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers) http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora
