iptables + ebtables + snat question

Scott Phelps netfilter at decipher.com
Sun Aug 14 06:58:03 CEST 2005


On Aug 13, 2005, at 2:23 PM, /dev/rob0 wrote:

> On Friday 2005-August-12 17:41, Scott Phelps wrote:
>
>> I have the following setup:
>>
>>            LAN
>>             |
>>             |
>>            if0       ________
>> DMZ---if1     if2---|ROUTER|---INTERNET
>>           \   /      --------
>>            br0
>>
>
> FWIW I think the ASCII drawing made perfect sense. I suspect MUA or
> perhaps MTA/MDA issues on Jan's part.

Thanks, BTW, I did use a fixed-width font.

>> Or do I have to assign a IP to my br0 interface?
>>
>
> That would work. Or have the bridge machine SNAT to 10.0.0.1

Right, Is there any reason to prefer SNATing through br0 over if2?
(I am not trying to add a ton of unnecessary complexity using ARP  
trickery)

Thanks for the help, BTW guys!





More information about the netfilter mailing list