From mboxrd@z Thu Jan  1 00:00:00 1970
From: Alexander Brill <kiowa@project23.no>
Date: Thu, 30 May 2002 12:27:21 +0000
Subject: Re: [LARTC] nat
MIME-Version: 1
Content-Type: multipart/mixed; boundary="=-v2X3UBxOp+XUqxN78lcM"
Message-Id: <marc-lartc-102276172021408@msgid-missing>
List-Id: <lartc.vger.kernel.org>
References: <marc-lartc-102258388103339@msgid-missing>
In-Reply-To: <marc-lartc-102258388103339@msgid-missing>
To: lartc@vger.kernel.org


--=-v2X3UBxOp+XUqxN78lcM
Content-Type: text/plain
Content-Transfer-Encoding: quoted-printable

On Tue, 2002-05-28 at 17:18, Martin A. Brown wrote:
> Alexander,
>=20
> Are you sure you do not mean
>=20
>   ip rule add prio 320 from 192.168.0.7 nat 193.212.64.53
>=20
> It seems that you have no problem with your nat rule, you just forgot=20
> about the rule based entry to rewrite the packet outbound.
>=20
> Try the above line and then
>=20
>   ip route flush cache
>=20
> -Martin
>=20
> On 28 May 2002, Alexander Brill wrote:
>=20
>  : I'm trying to set up a nat here to forward traffic directed to
>  : 193.212.64.52 to 192.168.0.7 by using
>  : `ip route add nat 193.212.64.52 via 192.168.0.7`
>  :=20
>  : Doing a traceroute on that shows me it works fine.
>  : But when I try to do it the other way around I seem to be banging my
>  : head against the wall. I follow the instructions per ip-cref:
>  : `ip route add prio 320 from 192.168.0.7 nat 193.212.64.53`. But this
>  : only gives me "RTNETLINK answers: Invalid argument"
>  :=20
>  : Any pointers on what might be wrong?
>  :=20
>  :=20
>=20

Hmm, it worked now, even though it was the exact command I gave it
earlier... strange.

But when I try to connect to a host from 192.168.0.7 the host I connect
to still says I'm connecting from 193.212.64.40 (my firewall).

Also, when there will be traffic trying to connect to 193.212.64.52 they
will go through standard iptable-rules, right? Meaning that I must allow
traffic destined for 193.212.64.52 through?


--=20
Alexander Brill <kiowa@project23.no>
http://www.project23.no
PGP-key: http://alexb.egil.org/key.pub

--=-v2X3UBxOp+XUqxN78lcM
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: This is a digitally signed message part

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQA89hqp2v4H2v0n/94RAhr8AJ4smv7GXemRwMT3uA2LVN6r9rsb5wCeLhlM
WuV/+2rsHjwznp72tOm5O1g=
=9tRp
-----END PGP SIGNATURE-----

--=-v2X3UBxOp+XUqxN78lcM--

_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/