Hi Eric,
> I was hoping have a SNAT rule for each incoming interface in the prerouting > chain on the Core router.... but you can't do SNAT in prerouting with > iptables. The problem lies in routing NAT'ed traffic back to it's respective device. If the devices have the same IP address there cannot be an intelligent routing decision made. Netfilter does not support forcing a packet to be sent to a specific device. Packets must be routed to devices based up routing decisions. I would suggest setting up a router for each 10.0.0.0/8 network to properly route traffic.
