On 6/12/10 1:23 PM, Farkas Levente wrote: > On 06/12/2010 10:09 PM, Tom Eastep wrote: >> On 6/10/10 7:47 AM, Farkas Levente wrote: >>> hi, >>> i'd like to natmap on our firewall from 1.2.3.0/24 to 1.2.4.0/24, but >>> only in that case if the destination is in 2.3.4.0/24,2.3.5.0/24. is it >>> possible somehow? currently i can't specify destination in netmap file. >>> and there is no such rule as NETMAP in rules? so what can i do? >>> thanks in advance. >>> >> >> I assume that you want this capability in SNAT NETMAP rules? > > both in snat and dnat case! > the full story is that we use 192.168.0.0/24 as our private network, but > we've to connect to a remote network with ipsec. they also use the same > network internally, so they assume we use 172.22.80.0/24. so i'd like to > netmap our network but only that case if the source/destination is in > her network (which is a dozen of private and public network range). >
Git commit d58127e51c65688876f4d183a836222d470294d6 should do what you want. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ ThinkGeek and WIRED's GeekDad team up for the Ultimate GeekDad Father's Day Giveaway. ONE MASSIVE PRIZE to the lucky parental unit. See the prize list and enter to win: http://p.sf.net/sfu/thinkgeek-promo
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
