/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting! /* ALSO: Don't quote this header. It makes you look lame :-) */ Jan Stifter wrote: > i have read the advanced mini routing howto, still have a small > question, which i can not solve since already 3 weeks: > > my ISP gave us range a.b.c.224-239 > and one ip for the router / firewall box: a.b.c.31 > > configuration of the router / firewall box is: > > eth0, a.b.c.31 (connected to ISP) > eth1, a.b.c.224-239 (servers of company 1 & 2) > eth2, 192.168.0.0-255 (company 1) > eth3, 192.168.1.0-255 (company 2) > > problem: > > in the network of company 2, i would like to make the machine with ip > 192.168.1.10 available to the public with ip a.b.c.228. i can not > simply move the machine to the server network due to other (bigger) > problems then. > > so if somebody from extern goes to http://a.b.c.228, he gets connected > to 192.168.1.10, and the answer is send to him as if it was send from > a.b.c.228. > > i played around a lot with the ip command, asked already once here, > still no soultion. > > can you help me? > can you point me to a mailing list about advanced routing questions? have you read the ip command reference from the iproute2 package? is the problem you are having that the reply packets use the first address on the external nic as their source address (rather than the destination address of the original, incoming packet)? if so, you can fix it by fwmark nat (see appendix c, page 50 of the ip command reference). you could also look at http://fwup.org/ which contains firewall/NAT scripts that can do this for you. raf _______________________________________________ Masq maillist - [EMAIL PROTECTED] Admin requests can be handled at http://www.indyramp.com/masq-list/ -- THIS INCLUDES UNSUBSCRIBING! or email to [EMAIL PROTECTED] PLEASE read the HOWTO and search the archives before posting. You can start your search at http://www.indyramp.com/masq/ Please keep general linux/unix/pc/internet questions off the list.
