--- Nick Donnelly <[EMAIL PROTECTED]> wrote:
>
> I can't get iptables to masq squat. I've got rp-pppoe on eth0 and eth1 is
> my internal net. I have tried four firewall/masqing scripts and the same
> result with all: my LAN host can ping the eth1 on the masq box, and the
> masq box can ping both eth1, and ppp0, but the LAN hosts can't ping any
> internet address. Everything seems to be in order, I even tried this
> rule (only):
> iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE
try:
iptables -t nat -A POSTROUTING -o ppp0 -j SNAT --to-source external.ip.addy.xxx
All the masquerading that was present in ipchains has been 'tweaked' to NAT.
If you're modifying the sender, use SNAT. If you're modifying the destination,
use DNAT.
HTHO,
jan
__________________________________________________
Terrorist Attacks on U.S. - How can you help?
Donate cash, emergency relief information
http://dailynews.yahoo.com/fc/US/Emergency_Information/
