Vidar Tyldum Hansen wrote: > Morten Nilsen, 02.08.2005 15:34: > >>Olaf Rempel wrote: >> >> >>>iptables -t nat -A POSTROUTING -o eth0 -d 10.0.1.3 -j SNAT --to 10.0.1.1 >> >> >>I don't quite get this one.. >> > > > My head hurts after trying to read and understand your problem, but with > NAT you have SNAT and DNAT. > DNAT is when you NAT incoming packages and change their destination,
yes, I'm quite aware of what dnat and snat is, I do run a couple firewalls here as it is ;) but I wasn't awfully clear in my post(s) > like you want to do here. So you DNAT the packets to 10.0.0.2 to > 10.0.1.3 (like you have done). > Then you have to SNAT (change source of) the packets from 10.0.1.3 so > that they appear to come from 10.0.0.2. Why Olaf SNATs to 10.0.1.1 I'm > not sure of, I'd say it's a typo. not so ;) Cheers, -- Morten _______________________________________________ tsl-discuss mailing list [email protected] http://lists.trustix.org/mailman/listinfo/tsl-discuss
