On Wed, 2011-09-14 at 12:47 +0000, Johnson, SE wrote: > My Shorewall firewall has interfaces on it, 2 public, 1 DMZ and 1 private. > > The 2nd of the 2 public interfaces are something I'm trying to get online > right now. It connects directly to an outside service that we use here and > will never go past that to the internet. However, it is using real IP > addresses. > > I turned up the 2nd interface and set up the routes to use that new > connection. From the firewall I can ping the addresses just fine (and the > traceroute shows the right path). > > On a computer from the inside (private NIC) the firewall tries to NAT and > send the connection out the original interface. After thinking about it, > this does make some sense. > > My questions are two fold. First, can I NAT an interface based on > destination(can I even have multiple nat interfaces)? Or if not, how can I > get this connection to work?
http://www.shorewall.net/MultiISP.html -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: This is a digitally signed message part
------------------------------------------------------------------------------ BlackBerry® DevCon Americas, Oct. 18-20, San Francisco, CA Learn about the latest advances in developing for the BlackBerry® mobile platform with sessions, labs & more. See new tools and technologies. Register for BlackBerry® DevCon today! http://p.sf.net/sfu/rim-devcon-copy1
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
