Board index Solaris

Using IPFilter to NAT Locally-Generated Traffic

Using IPFilter to NAT Locally-Generated Traffic

Post by Lyle » Wed, 12 Nov 2003 06:24:14



Hello,

I am looking for a NAT solution for Solaris 8 that is equivalent to
what the OUTPUT section of iptables provides for Linux.  My goal is to
trick some network monitoring applications on a Solaris server into
thinking that they have local access NATed devices that sit on provate
networks.  To do this, I need to be able to NAT the destination
address on packets that this application generates from the true
private address to the routable NAT address before it leaves the
server itself.

Everything I have read has pointed to IPFilter as the NAT solution of
choice for Solaris but I do not see how I can create the traffic flow
I am looking for.  If IPFilter can do this for me, how do I configure
it properly?

 
 
 
Top

Using IPFilter to NAT Locally-Generated Traffic

Post by Michael Laajane » Thu, 13 Nov 2003 07:04:27


HI,


> Hello,

> I am looking for a NAT solution for Solaris 8 that is equivalent to
> what the OUTPUT section of iptables provides for Linux.  My goal is to
> trick some network monitoring applications on a Solaris server into
> thinking that they have local access NATed devices that sit on provate
> networks.  To do this, I need to be able to NAT the destination
> address on packets that this application generates from the true
> private address to the routable NAT address before it leaves the
> server itself.

> Everything I have read has pointed to IPFilter as the NAT solution of
> choice for Solaris but I do not see how I can create the traffic flow
> I am looking for.  If IPFilter can do this for me, how do I configure
> it properly?

Sorry but I do not know exactly what you want to do with NAT?

Do you only want to let the router perform NAT/NATP for you or ?

What means that you want to "trick some network monitoring applications"?

/michael

 
 
 
Top

1. Using qmail to deliver locally generated system messages

Hi,

I am using SuSE 7 with kernel 2.2.16. I have an internal network
connecting two Win pc's using samba. I use qmail as my e-mail
server/gateway, fetchmail to get mails from my isp, courier imap and
pop3 server for e-mail clients. What I would like to do is also to be
able to read the system e-mails, which were generated every night by
the backup software, security checks etc, using qmail. Guess I would
like the following to happen when a system e-mail is generated:

- an e-mail is generated in, let's say: the backup software
- this must be sent to the smtp port of qmail-smtp (or something
else?)
- then get written to my (root) maildir
- using imap/pop3 to get my mails

What my linux machine is doing now is sending e-mails to the mbox file
and warn me of new mails via standard output. Do u think I can do
that? Thanks!

2. Please help! Token Ring setup

3. counting traffic to individual hosts behind a NAT router using ONLY iptables

4. Linux, X and Matrox graphics card.

5. ipfw: identifying locally generated packets ?

6. Kerberos V5 and SSLeavy

7. Pcap/Libnet Interaction - Can I make pcap ignore locally generated frames?

8. Shortcuts in KDE menu

9. IPfilter NAT totally dead

10. Cable modem: DHCP works - NAT doesn't (ipfilter problem?)

11. ipfilter/NAT with Solaris and 2-cpu machine

12. ipfilter nat problem

13. NAT-problem/ipfilter


All times are UTC
Board index