> I am trying to enable static NATting on my linux box running 2.4.17 kernel. I did enable > all NETFILTER and NAT related modules in Config.h but I could not find any line > indicating static NAT. Can anyone tell me if static NAT is already incorporated into 2.4.17?? > If not, is there a 2.4.17 kernel patch that I can use. I could find a patch for 2.2.4 kernel which > but not for 2.3 or 2.4 kernels which makes me wonder if it's already part of 2.4.17.
Static NAT, if I'm interpreting this correctly, is just a subset of the features that have always been in iptables NAT from the beginning. It's just that instead of writing rules about ports and such, you simply specify the two IP's to NAT between, one rule in each direction, and have it set up so that all the external IP's resolve to the firewall, like this... INTIP=192.168.2.1 EXTIP=13.45.32.1 iptables -t nat -A PREROUTING -s $EXTIP -j DNAT --to $INTIP iptables -t nat -A POSTROUTING -s $INTIP -j SNAT --to $EXTIP That what you're talking about? -EtherMage
