Re: NAT IP POOL! - Filip Sneppe

Linux Netfilter discussions
 help / color / mirror / Atom feed

From: Filip Sneppe <filip.sneppe@cronos.be>
To: Blizzards <blizzards@libero.it>
Cc: netfilter@lists.netfilter.org
Subject: Re: NAT IP POOL!
Date: 05 Dec 2002 12:45:43 +0100	[thread overview]
Message-ID: <1039088743.489.31.camel@xbox> (raw)
In-Reply-To: <3DEF3465.4070003@libero.it>

On Thu, 2002-12-05 at 12:11, Blizzards wrote:
> Hi list!
> 
> 
> Those are my questions:
> 
> A)I need to SNAT a subnet 192.168.1.0/24 with 172.16.1.0/24.
> I use this tule:
> iptables -t nat -A POSTROUTING -s 192.168.1.0/24 -j SNAT --to 172.16.1.0/24
> This is ok, but when i nat an address, i must create an ip alias on ethn 
> an my nat box for this to work. Ok.
> When i use few address no problem at all, but using a pool of address (a 
> subnet or an interval of ip address), i must create 254 aliases for the 
> interface or there was a better method?
> B)Iptables Nat a pool of address with 1:1 method like cisco nat?
> If yes, when no more address 1:1 are avaiable for connections, can i
> se a PAT address like cisco nat?
> Or iptables works differently balancing the load of ip address used?
> 

Hi,

You probably want to look at the NETMAP target that is in patch-o-matic.
SNAT and DNAT targets will do some loadbalancing. You'll get weird
results with your setup.

With NETMAP you can do source NAT and destination NAT of whole subnets
with a strict 1:1 mapping.

Regards,
Filip

next prev parent reply	other threads:[~2002-12-05 11:45 UTC|newest]

Thread overview: 3+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2002-12-05 11:11 NAT IP POOL! Blizzards
2002-12-05 11:45 ` Filip Sneppe [this message]
2002-12-05 11:59   ` Blizzards

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=1039088743.489.31.camel@xbox \
    --to=filip.sneppe@cronos.be \
    --cc=blizzards@libero.it \
    --cc=netfilter@lists.netfilter.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox