Firewall.routing configuration problems
rob0 at gmx.co.uk
Thu Oct 20 21:17:13 CEST 2005
On Thursday 2005-October-20 11:40, Paul Lewis wrote:
> iptables -t nat -A POSTROUTING -s 192.168.0.0/24 -j MASQUERADE -o
Are you thinking that the "-o eth3" will modify the behaviour of the
MASQUERADE target? It will not. It merely modifies which packets match
the rule. The above matches packets with source address 192.168.0.0/24
which are routed out device eth3.
See also SNAT, which is more appropriate with static IP addresses.
MASQUERADE is for home users and dynamic IP addresses.
IIUC your issue, which I might not because I didn't spend much time on
it, it's routing. You need to have routes for your conference guests.
Furthermore as has been suggested here to me (and I concur) you should
start unlearning route(8) and ifconfig(8) and start learning ip(8) from
iproute2, which is far more powerful and capable.
mail to this address is discarded unless "/dev/rob0"
or "not-spam" is in Subject: header
More information about the netfilter