by annaliss » Sun, 22 Feb 2009 13:40:01
In the IP masquerading diagram given here
http://www.linux-mag.com/images/1999-08/img2/guru2.jpg
in step 12 , how does the masq server determines , the packet is not for
the linux server but for an internal masqued machine ?
masquerading operation is just SNAT/DNAT operation isn't it ?
by Robert Nichol » Tue, 24 Feb 2009 02:29:53
Whenever SNAT is set up for a connection, a corresponding DNAT is
automatically set up for the reply traffic.
SNAT 192.168.0.10:1060 -> 123.123.123.123:64000
implies
DNAT 123.123.123.123:64000 -> 192.168.0.10:1060
And yes, there are typos in that linux-mag figure. There's a missing
"123" address component in the addresses in each of the green boxes.
--
Bob Nichols AT comcast.net I am "RNichols42"
1. IP for masqueraded net other than masquerading host IP
Hello
I have a linux box which should work as router for two subnets to the internet.
One subnet has valid IP addresses but the other subnet with private IPs has to be masqueraded. Is it possible to masquerade this subnet with an IP address from the other subnet or with the IP of the router port which is connected to the valid subnet and not with the IP address of the router port which is connected to the internet which is the default?
regards
Klaus
2. Data Available check on /dev/ser?
3. IP Masquerading works, but does not masquerade from within the local network
5. IP MASQuerading NOT Masquerading?
7. Dead SVGA with 2.x.x kernels
8. Backup scripts, IP firewalling and IP masquerading
10. IP-Chains vs. IP-Masquerade
12. proxy route gateway ip masquerading ip chains ?