Michael Schwendt wrote:
> Do yourself a favour and read "man iptables" as well as some of the
> iptables tutorials and howtos on the netfilter project page
> http://www.netfilter.org
>
> With long options, the rule would look like:
>
> iptables --table nat --append POSTROUTING \
> --source 172.2.0.0/24 --out-interface eth0 \
> --jump MASQUERADE
>
> You want packets (well, and also datagrams) that go _out_ on the
> _output_ interface (-o eth0) with a source IP address from your
> private subnet to be masqueraded. IP Masquerading modifies the
> source address in outgoing packets, so your private IPs from RFC1918
> don't make it onto the Internet and reply packets can be routed back
> to you.
So, do you means
change :
iptables -t nat -A POSTROUTING -o eth1 -s 172.2.0.0/24 -j MASQUERADE
to :
iptables --table nat --append POSTROUTING \
--source 172.2.0.0/24 --out-interface eth0 \
--jump MASQUERADE
Is it include security ?
Thank for your help !
Edward.
--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe
https://listman.redhat.com/mailman/listinfo/redhat-list
