I have successfully set up my Linux box for NAT routing and IP accounting, and have figured out how to map public addresses to private addresses to boot! Only one thing remains, and that is to permit one of the hosts external to the NAT access to my subnet. I have managed to do it by using the command:
iptables -t nat -A PREROUTING -s xxx.xxx.xxx.37 -j DNAT --to 10.103.104.1 However, if I try to use an IP range like this: iptables -t nat -A PREROUTING -s xxx.xxx.xxx.37 -j DNAT --to 10.103.104.1-10.103.111.254 my external box cannot see anyting. It is a Windows 2000 machine with this routing entry: route add 10.103.104.0 mask 255.255.248.0 xxx.xxx.xxx.175 (this final IP is the actual gateway to the NAT subnet). Is there a way of using a subnet, or do I actually have to make a seperate entry for each host I want to permit the public box to access? -- A. Clausen
