Hello,
On May 16, Todd Graham Lewis wrote
> When using NAT in a 1<->1 mapping mode (10.66.10.i <-> 207.69.181.i), is
> that really a problem? recv packet; s/external_address/internal_address;
> transmit; where's the problem?
Stable Linux KErnels can't do it. They only support Masquerading and
ransparent Proxy. With the recent development Kernels it might be possible
(its in the Routing code, not in the Firewall code). At least this should
wok for simple prootocols like HTTP, not sure how much the application
support (say FTP) is ready wit the new NAT stuff. Perhaps ipfilter/natd on
*BSD* is a better solution?
Greetings
Bernd
--
(OO) -- Bernd_Eckenfels @
Wittumstrasse13 .
76646Bruchsal .
de --
( .. ) ecki @
{inka .
de,linux.de,debian.org} http://home.pages.de/~eckes/
o--o *plush* 2048/93600EFD eckes @
irc +4972573817 BE5-RIPE
(O____O) If privacy is outlawed only Outlaws have privacy
Follow-Ups:
-
Re: NAT for linux
From: Todd Graham Lewis <lists @
reflections .
eng .
mindspring .
net>
References:
|
|
