From mboxrd@z Thu Jan  1 00:00:00 1970
From: Stef Coene <stef.coene@docum.org>
Date: Fri, 12 Sep 2003 21:22:31 +0000
Subject: Re: [LARTC] beginner question about imq
Message-Id: <marc-lartc-106340183823252@msgid-missing>
List-Id: <lartc.vger.kernel.org>
References: <marc-lartc-106318926529070@msgid-missing>
In-Reply-To: <marc-lartc-106318926529070@msgid-missing>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
To: lartc@vger.kernel.org

On Friday 12 September 2003 21:07, Sz=E1lka Tam=E1s wrote:
> At 18:58 2003. 09. 12.=AD +0200, you wrote:
> > > With the IMQ NAT patch the order is reversed? The filtering on
> > > de-masqueraded addresses is only possible, if NAT is b e f o r e IMQ,
> > > isn't it? Tom
> >
> >The nat in prerouting is also reponsible for rewriting the addresses of
> >natted
> >packets.  So you want IMQ after nat so the packets entering the imq devi=
ce
> >have the real ip address.
> >
> >Stef
>
> What do mean by "real ip address"? So when the packet arrives into the im=
q,
> the address in the packet is the local (i.e. 10.0.0.x) address?
Yes.  At least it should.

Stef

--=20

stef.coene@docum.org
 "Using Linux as bandwidth manager"
     http://www.docum.org/
     #lartc @ irc.oftc.net

_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/