Network mapping from internal and external
Craig Steadman
spinout at yakbox.shacknet.nu
Mon Oct 4 07:43:28 CEST 2004
Hi Greg
I've placed the scripts i use on sourceforge
http://bastionx.sourceforge.net
I use it to maintain a VPN on dynamic ip addresses.
It has a alot of coding framework which can be re-used
to create your own scripts. The sub-interface detection
and ip redirection functions could be useful for you.
Cheers
Craig
On Mon, 2004-10-04 at 11:42, Gregory Gerard wrote:
> I'm not sure how to describe my setup and intended network in iptables
> parlance. Have searched much and can't find anything that matches my
> situation.
>
>
>
> I have 5 static IPs from my ISP. Out the Ethernet end of my DSL box I see
> those 5 IPs directly. I have no control over the router but that's fine.
>
>
>
> I have many more than 5 machines in my network.
>
>
>
> Internally, I have 10.9.x.x (255.255.0.0).
>
>
>
> I would like to setup iptables such that 4 of the external IP addresses map
> completely map onto exactly 4 internal IP addresses. The fifth external
> address will simply be used to NAT for internal only machines.
>
>
>
> What's the right mix of NICs and settings?
>
>
>
> I was thinking about bringing up several eth0:1..4 interfaces to accept
> those 4 external addresses and map them that way.
>
>
>
> Suggestions?
>
>
>
> Thanks!
>
> greg
>
>
More information about the netfilter
mailing list