On Tue, 02 Aug 2005 15:34:54 +0200 Morten Nilsen <[EMAIL PROTECTED]> wrote:
> Olaf Rempel wrote: > > iptables -t nat -A POSTROUTING -o eth0 -d 10.0.1.3 -j SNAT --to 10.0.1.1 > > I don't quite get this one.. It change the source-ip of all packets when leaving to 10.0.1.3. So 10.0.1.3 replys not to $real-ip, but to 10.0.1.1 I thought box1 might be "dual homed" (second nic with default route still connected to isp1). So with this SNAT the packets are going the same way back, as the come in. Olaf PS: tcpdump -i <dev> -lnp is your friend :) _______________________________________________ tsl-discuss mailing list [email protected] http://lists.trustix.org/mailman/listinfo/tsl-discuss
