Hi Bonno, Op 08-01-15 om 07:57 schreef Bonno Bloksma: > Hi, > > At one place I have a Debian wheezy machine that acts as router / firewall > using iptables and default routing. > I used to have just 1 ip number on the uplink interface. And a simple > $IPTABLES --table nat -A POSTROUTING -o $WORLD_IF -j MASQUERADE > line in my firewall script sends all traffic out with that single ip addres > via NAT. > > Due to several reasons I now have to use more than 1 outbound ip address to > make clear from which internal segment the traffic is coming from. > So traffic coming from 172.16.20.0/24 needs to use $WORLD_IP1 > And traffic coming from 172.16.22.0/24 needs to use $WORLD_IP2 > And maybe traffic coming from 172.16.24.0/23 needs to use $WORLD_IP3 > > How do I configure something like that?
Maybe by adding network aliases, and using SNAT in your firewall. See e.g. here: http://stackoverflow.com/questions/18052116/iptables-postrouting-with-snat-for-a-paritcular-destination-ip With regards, Paul van der Vlis. -- Paul van der Vlis Linux systeembeheer, Groningen http://www.vandervlis.nl/ -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/m8lqvi$573$1...@ger.gmane.org
