> Eu am facut un script care calculeaza portul pe baza adresei IP, si un > algoritm simplu, pe baza caruia fiecare sa isi deduca singur portul. > > Exemple: > 192.168.100.11 -> 50011 > 192.168.101.204 -> 51204 > 192.168.102.77 -> 52077 > > Algorimul merge, evident daca clasa interna este mai mica sau egala cu /21. > Daca e mai mare... Ideea era sa poata useru' sa isi calculeze singur portul, > fara sa stie transformari in baza 2.
Asa am facut si eu si totul e ok. Totusi n-am reusit sa rezolv problema transferului intre 2 useri din aceeasi retea care si-au setat in DC IP-ul real si portul. Exemplul din FAQ nu mi-a functionat: How do I set up active mode with a Linux based firewall/router? It depends on what kernel version you are using. With 2.4 you can choose between doing postrouting or the easier prerouting. The difference is if you do a postrouting, all clients withing your internal network (LAN) can connect and download/upload between eachother. Postrouting is not nessesary if you are the only client wich uses DC behind the router/firewall. Examples below uses the following settings: External ethernet card: eth1, external IP 213.112.8.55, firewall (router) IP: 192.168.0.1, client IP: 192.168.0.2, external and internal port: 555 Linux 2.4, postrouting example iptables -t nat -A POSTROUTING -d 192.168.0.2 -s 192.168.0.0/24 -p tcp -- dport 555 -j SNAT --to 192.168.10.1 iptables -t nat -A POSTROUTING -d 192.168.0.2 -s 192.168.0.0/24 -p udp -- dport 555 -j SNAT --to 192.168.10.1 iptables -t nat -A PREROUTING -i eth1 -p tcp --dport 555 -j DNAT --to 192.168.10.2:555 iptables -t nat -A PREROUTING -i eth1 -p udp --dport 555 -j DNAT --to 192.168.10.2:555 iptables -t nat -A PREROUTING -d 213.112.8.55 -p tcp --dport 555 -j DNAT --to 192.168.10.2:555 iptables -t nat -A PREROUTING -d 213.112.8.55 -p udp --dport 555 -j DNAT --to 192.168.10.2:555 Merge sau nu merge faza asta? --- Detalii despre listele noastre de mail: http://www.lug.ro/
