DNAT for local connections
Amministratore rete IGM
admnet@geomil.esercito.difesa.it
Mon, 29 Oct 2001 16:40:01 +0100
On Monday 29 October 2001 15:32, you wrote:
> Hi to all,
> I'm new to the list and I have a problem with iptables.
> There's a way to do SNAT of packets directs from an host of an internal
> lan to the local services of a linux box used as firewall between the
> lan and internet ? (This is a problem because packets don't go throught
> the POSTROUTING chain)
> Es: an FTP request from a PC to wu-ftpd on the linux box SNATted to an
> IP of an interface of the linux box (this is for work around the
> problem of the reverse DNS lookup of PC's IP. This isn't DNS mapped on
> my net). Sorry for my (i hope understandable) english.
>
> Thanks to all
>
> Gilberto Carcano
remember that ftp has the port command so your ip_tables_ftp must be loaded
to make it work properly.
I didn't understand the problem related to DNS, the outside network doesn't
see your inner host but only the linux box.