From mboxrd@z Thu Jan  1 00:00:00 1970
From: Oscar Mechanic <oscar@ufomechanic.net>
Date: Tue, 25 Oct 2005 12:45:31 +0000
Subject: Re: [LARTC] Ip Src rewite.
Message-Id: <1130244331.15040.136.camel@OSCARLAPLIN>
List-Id: <lartc.vger.kernel.org>
References: <435E26E3.2080204@cyberdoc.dk>
In-Reply-To: <435E26E3.2080204@cyberdoc.dk>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
To: lartc@vger.kernel.org

Maybe I have missed somthing and you need to do it in POSTROUTING but
how about SNAT.

PS: ip can do stateless nat.

On Tue, 2005-
10-25 at 14:36 +0200, Daniel Frederiksen wrote:
> Hello folks..
> 
> Does any of you know if it is possible to rewrite the ip src in a packet.
> I have a problem involving a DMZ with external IP addresses routed 
> trough a single WAN IP. When the server initiates a connection, it looks 
> like it comes from the WAN ip instead of it's designated External IP 
> routed through the WAN.
> So in short, Is it possible to rewrite the packet in the router, with 
> Iptables, to make it look like it comes from the external IP address 
> instead of the WAN IP of the router/firewall.
> 
> Thank you very much for your time, I appreciate it.
> 
> /Daniel Frederiksen
> 
> 
> NB: Small diagram of the setup.
> 
>    DMZ                     GW/FW           ISP/Internet
> -----------------------------------------------------------------------
>    Server #1  --|
>    e.f.g.h3/26  |
>                 |---- Gateway/Firewall --- ISP  WAN IP: a.b.c.d/30
>    Server #2  --|      a.b.c.d1/30         Ext. IP: e.f.g.h/26
>    e.f.g.h4/26         e.f.g.h1/26
> ----------------------------------------------------------------------
> 
> _______________________________________________
> LARTC mailing list
> LARTC@mailman.ds9a.nl
> http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc

_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc