/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting! /* ALSO: Don't quote this header. It makes you look lame :-) */ I am using ipchains to do masquerading on the forward chain and ipmasqadm to define some ports for address translation. My rules include: ipchains -A forward -s a.b.0.0/16 -j MASQ ipmasqadm portfw -a -P tcp -L 208.38.0.4 80 -R a.b.c.d 80 ipmasqadm portfw -a -P udp -L 208.38.0.4 10010 -R a.b.c.d 10010 This is all working fairly well, but when the internal machine (a.b.c.d) receives the UDP packet and creates a response, the packet that arrives at the recipient has the address of the firewall's internet interface instead of 208.38.0.4. Is there a way to tell the firewall that outgoing packets from a.b.c.d should have their source address masqed to 208.38.0.4 instead of the firewall's address (208.38.0.6)? TIA Doug Doug Taylor Shared Computing / Telecom Coord. Canadian Hunter Exploration Ltd. www.canadianhunter.com <http://www.canadianhunter.com> 2800, 605 - 5 Avenue SW * Calgary, AB * T2P 3H5 ph: (403) 260-1862 * fx: (403) 260-1686 email: [EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]> "Innovation: The best way to predict the future... Is to create it." "Imagination: Raise new questions, explore new possibilities, regard old problems from a new angle." - Einstein "Any sufficiently advanced Technology is indistinguishable from magic." - Arthur C. Clarke "En Avant!" _______________________________________________ Masq maillist - [EMAIL PROTECTED] Admin requests can be handled at http://www.indyramp.com/masq-list/ -- THIS INCLUDES UNSUBSCRIBING! or email to [EMAIL PROTECTED] PLEASE read the HOWTO and search the archives before posting. You can start your search at http://www.indyramp.com/masq/ Please keep general linux/unix/pc/internet questions off the list.
