Pablo Sebastian Greco wrote: > El 21/04/2010 13:38, Santiago Zarate escribió: >> Yea... i guessed... well thanks for the help anyways... ill try to >> write a blog post just in case anyone else needs a solution like this. >> >> > Actually, if you set the proxy with ip 192.168.2.10 and add 192.168.2.1 > to the shorewall box, you could just dnat (without masquerade) and > everything should just work > > Am I missing something here?
Yes. Responses from 192.168.2.10 back to the client have the wrong source IP since they don't go through the shorewall box. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
