Going around routing tables without NAT

All of lore.kernel.org
 help / color / mirror / Atom feed

From: "Ric Messier" <kilroy@WasHere.COM>
To: netfilter@lists.netfilter.org
Subject: Going around routing tables without NAT
Date: Tue, 25 Jul 2006 09:47:24 -0600	[thread overview]
Message-ID: <001c01c6b001$a08ae1b0$e1a0a510$@COM> (raw)

Hi,
	I have a problem I've been unable to come up with a solution for. I
have a pair of "Internet" connections into my firewall. One is a wireless
broadband connection that has a static IP address so I use it to host a
couple of small domains (Web/mail). The second connection is DSL. I'd like
to push traffic from my internal network through the DSL connection and
leave the static connection for hosting purposes (and a backup in case of
issues with the DSL). I don't, however, want to do NAT since the "modem" I
am connected to already does NAT and I don't really want to double-NAT the
packets. My routing table on the firewall is set with a default out the
wireless connection which needs to be there so I'm not routing
asymmetrically on response traffic to, for example, SMTP or HTTP. It seems
to me that a POSTROUTING rule with a ROUTE target should be correct but I'd
need to install the patches for that and it's not clear to me how well it
would work anyway. Any additional thoughts?


:wireless bband: ------ 	<- default route
				\
				 \
				  <--->: firewall : <---> : internal network
:
				 /
				/
:DSL: -----------------


Thanks,
Ric

                 reply	other threads:[~2006-07-25 15:47 UTC|newest]

Thread overview: [no followups] expand[flat|nested]  mbox.gz  Atom feed

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to='001c01c6b001$a08ae1b0$e1a0a510$@COM' \
    --to=kilroy@washere.com \
    --cc=netfilter@lists.netfilter.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.