[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IPFILTER: selective NATing

To: Scott Francis <scott@virtualis.com>
Subject: Re: IPFILTER: selective NATing
From: Attila Nagy <bra@fsn.hu>
Date: Tue, 2 Jan 2001 19:51:44 +0100 (CET)
Cc: Henning Brauer <lists@bsws.de>, <misc@openbsd.org>

Hello,

> > is it possible with ipfilter that packets for specified subnets are not NATed?
> > Setup:
> >                      ---- OBSD NAT -> Workstations (192.168.214.0/24)
> > Internet -- routers /
> >                     \
> >                      ---- Firewall -> Server Farm (public IP space)
> > The last Core router before the Internet Connections knows the route to
> > 192.168.214.0/24, so i don't want accesses from 192.168.214.0/24 to our
> > server farm (several /24's) to be NATed (accounting purposes).
> > Any possibility aside from using additional wires?
/etc/ipnat.rules:
map if0 from workstations_ip/24 ! to server_farm_ip/24 -> natbox_ip/32

I think this is what you want...
--------------------------------------------------------------------------
Attila Nagy                                    e-mail:  Attila.Nagy@fsn.hu
Budapest Polytechnic (BMF.HU)                   @work: +361 210 1415 (194)
H-1084 Budapest, Tavaszmezo u. 15-17.           cell.: +3630 306 6758

Follow-Ups:
- Re: IPFILTER: selective NATing
  - From: Henning Brauer <lists@bsws.de>

Prev by Date: 3Com Etherlink 3c509b PnP
Next by Date: Re: PIII 550 or Athlon 950?
Prev by thread: Re: 3Com Etherlink 3c509b PnP
Next by thread: Re: IPFILTER: selective NATing
Index(es):
- Date
- Thread