* Source port translation only
@ 2012-06-18 22:28 Nejc Škoberne
0 siblings, 0 replies; only message in thread
From: Nejc Škoberne @ 2012-06-18 22:28 UTC (permalink / raw)
To: netfilter
Hi,
I want to do (stateful) source port translation (restriction actually)
on my outgoing packets, but no source address translation. And I want to
do it for IPv6.
So if there is a TCP packet like this:
SRC ADDR: 2001:db8::10
DST ADDR: 2001:c0de:
SRC PORT: 53523
DST PORT: 80
I want to translate it so that the source port falls into a specific
port range, say [1024:2047]:
SRC ADDR: 2001:db8::10
DST ADDR: 2001:c0de:
SRC PORT: 1500
DST PORT: 80
If the source port is already in the requested port range, no
translation is needed (but the state has to be kept anyway).
Is this possible to do with netfilter? If not, does anybody know for any
other (simple) way to do it?
Thanks,
Nejc
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2012-06-18 22:28 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2012-06-18 22:28 Source port translation only Nejc Škoberne
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.