* Re[4]: [LARTC] further than dead gateway detection
@ 2003-03-04 10:22 Никита Винокуров
0 siblings, 0 replies; only message in thread
From: Никита Винокуров @ 2003-03-04 10:22 UTC (permalink / raw)
To: lartc
-----Original Message-----
From: Paul Evans <pevans@catholic.org>
To: lartc@mailman.ds9a.nl
Date: Mon, 3 Mar 2003 09:38:17 -0800
Subject: Re: Re[2]: [LARTC] further than dead gateway detection
>
> On March 3, 2003 08:22 am, Никита Винокуров wrote:
> > > have you done masquerading from an internal network?
> > > cause that does not work for mi..you may help me :)
> >
> > Yes, I've done it by the means of iptables (I have a 2.4.20 kernel).
> >
> > masquarade does not interacts with routing, just put it in the two routes:
> >
> > iptables -t nat -A POSTROUTING -o $IFACE1 -j SNAT --to-source $IP1
> > ipdables -t nat -A POSTROUTING -o $IFACE2 -j SNAT --to-source $IP2
> >
> >
> > where $IP1 and $IP2 -- the external addresses of the certain interfaces
> > ($IFACE1 and $IFACE2)
>
> I have this which also works:
> iptables -t nat -A POSTROUTING -s net/mask -o $IP1 -j MASQUERADE
> iptables -t nat -A POSTROUTING -s net/mask -o $IP2 -j MASQUERADE
>
> Why would it be better to SNAT?
>
>
You may use a MASQUERADE tag only if your ip-addresses are assinged dynamycally. In other cases it would be better to set SNAT.
--
Nikita
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2003-03-04 10:22 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2003-03-04 10:22 Re[4]: [LARTC] further than dead gateway detection Никита Винокуров
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.