IP Masquerade & Multiple IP addresses

IP Masquerade & Multiple IP addresses

Post by Radovan Bra » Tue, 26 Aug 1997 04:00:00

Quote:>Just one quick question about IP Masq.  From what I can gather, IP
>Masquerade is basically the same thing as cisco's implimentation of

   Nope. Cisco's NAT is (normally 1-to-1) substitution of IP-s, as
   in RFC 1631. Linux Masquerading substitutes all IP-s with that
   of the gateway machine, but changes the port to one in the
   60K-64K range; it is only used for "ported" protocols, i.e.
   TCP and UDP. (It can also recognize ICMP replies to TCP and
   UDP packets and redirect them accordingly.) Cisco's NAT also
   has "IP overloading" which is similar to Linux Masquerading.

Quote:>The one thing I haven't seen is this:  Can IP Masquerade assign
>a group of "real" IP addresses to accomodate higher usage?  

   No, AFAIK. I find this rather surprising, since the code for
   "real" NAT would be very similar to that already existing for
   Masquerading. Maybe somthing in this direction has been done
   in 2.1.X kernels, does anybody know ?

   (1) Maybe the reason for that is that the code has in fact
   been ported from another implementation. (BSD ?)
   (2) A German student has written some NAT code for Linux,
   but it is completely unrelated to Firewalling/Masquerading,
   and I understand that it is essentially alpha, so it does not
   seem a good idea.
   (3) Note that I've never used Linux Masquerading nor Cisco
   NAT :)


Quote:>The reason
>I ask is with cisco, you can assign a range of IP addresses to be
>translated to instead of just using the IP address of the router.
>My only immediate needs for IP Masq. is for a small network at home
>consisting of no more than 1-2 users so if it can't, it's not a big
>deal right now.


1. IP Masquerading with IP Address and Mac Address Restrictions


I am setting up a Linux box to run I.P. Masquerading for other machines
on my LAN.  Question is I want to be able to give access to those machines
satisfy two prerequisites: The I.P. address the machine has been
assigned must match the mac address of the NIC card.  It's probably
some simple switch in the software I'm not aware of, but I neither have been
able to locate
it in the software or in the HOWTOs.

Does anybody know how to do this?


2. MkLinux: PPP and Ethernet don't mix?

3. Changing IP address on Solaris 9 with multiple virtual IP addresses

4. looking for binary ULTRIX11 or 2.10bsd

5. IP masquerading wint RH 5.2 multiple IP

6. co problem

7. IP Masquerading - Can't use Host names only IP address

8. Mandrake/Win98 dual-boot without LILO? (FAT32)

9. IP Address of IP Masqueraded Client

10. IP Masquerade or insufficient IP address space

11. IP Masquerade and Fix IP address

12. IP Aliaseing (Multiple IP address to one interface)

13. IP for masqueraded net other than masquerading host IP