Deciding whether connection is NATed or not.
Nate Campi
nate@campin.net
Thu, 6 Dec 2001 13:09:47 -0800
I seem to recall that 2.2 masquerading used certain high ports set aside
for source port of masqueraded connections. This was to help tell the
masq'd ones from one originating from the masq'ing box. No technique
like this is used for 2.4 kernels/iptables?
BTW, I could be wrong on the old behavior, I haven't looked at the
source I just remember reading that somewhere.
begin Jim Fleming quotation of Thu, Dec 06, 2001 at 02:42:51PM -0600:
> ----- Original Message -----
> From: "op" <ol1@v10a.com>
> To: <netfilter@lists.samba.org>
> Sent: Thursday, December 06, 2001 5:08 AM
> Subject: Deciding whether connection is NATed or not.
>
>
> > Is there any way to figure out (packet inspection or tarot cards) wheter an
> > incoming connection is NATed at the other end?
> >
>
> I think that depends on your address plan and other bits
> you might choose to use in the IPv4 header.
>
> This may help...
> http://www.dot-biz.com/IPv4/Tutorial/
>
> Jim Fleming
> http://www.IPv8.info
> IPv16....One Better !!
--
Nate Campi http://www.campin.net GnuPG key: 0xC17AEF79
Key fingerprint = BF12 722F 8799 E614 33CC FAB7 5A90 C464 C17A EF79
Real programmers don't bring brown-bag lunches. If the vending
machine doesn't sell it, they don't eat it. Vending machines don't
sell quiche.