/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting!
/* ALSO: Don't quote this header. It makes you look lame :-) */
Adam Hyde wrote:
> > > My problem is simple. (Hopefully the solution is, too!) Packets from
> > > the 192.168.10.0 network have a source address of 10.100.1.4 after
> > > masquerading. This makes it impossible for any packets to be returned.
> > >
> > > How can I set the source address to be 203.23.128.254?
> >
> > You really can't. The ISP has assigned you an address from a private
> > network. They are probably NAT-ing it somewhere upstream of you.
> >
> > Why did they assign you a 10-net address? Is the router a DSL modem?
> > If so, you might want to see if you can convince them to switch it to
> > bridging mode (vs. routing mode) so that you get a registered IP
> > address directly on your gateway.
>
> We have a microwave dish on top of the building. I'm not exactly sure
> what the 10.100.1.1 box is (all I know is that it's some kind of
> proprietry interface to the microwave dish) and I imagine there's an
> identical box at the other end with a 10.100.1.x address.
>
> We do have a registered IP address on the gateway, (we have the whole
> 203.23.128.0 class C) and any packets that come from this network
> obviously keep a 203.23.128.x source address and replies get routed back
> to us no problem. However, most of the machines on our network don't need
> real IPs, so I'd like to switch them over to a private network to conserve
> IP space.
>
> Are you sure there is no way to chage the source address? After reading a
> more up-to-date HOWTO I investigated the iproute2 tool which seems to be
> able to do what I want. The problem is, the documentation is somewhat
> lacking so I still don't have any idea how to do this, (if it is
> possible).
as i said before, this is not what you want to do but
the doco for iproute is by no means lacking. have you
read the ip command reference (in the docs subdirectory)?
particularly appendix C (page 50). it explains fairly
clearly how to rewrite source addresses. if it's still
in very russian english, i have a "translated" version
in native english that you might prefer. also, there is
an example of rewriting source addresses of reply packets
in my firewall/napt/nat scripts at
http://www.zip.com.au/~raf2/lib/software/firewall/
raf
_______________________________________________
Masq maillist - [EMAIL PROTECTED]
Admin requests can be handled at http://www.indyramp.com/masq-list/ --
THIS INCLUDES UNSUBSCRIBING!
or email to [EMAIL PROTECTED]
PLEASE read the HOWTO and search the archives before posting.
You can start your search at http://www.indyramp.com/masq/
Please keep general linux/unix/pc/internet questions off the list.
