DNAT/SNAT question

Jason Opperisano opie at 817west.com
Thu Apr 14 19:28:41 CEST 2005

On Thu, Apr 14, 2005 at 10:25:27AM -0700, Gary W. Smith wrote:
> I have a set of external IP's which are SNAT'd/DNAT's to a private
> range.  On this particular network there are 64 of them.  In the part we
> create a 1:1 SNAT and a 1:1 DNAT for each IP.  Since we have a /26 is it
> possible to do this in a single line rather than having 64 entries?  I
> know that if we specificy multiple --souce or --destinations it says it
> will do round robin, which is not what we want.

this is the job of the NETMAP target.  and you would do it in two rules,



"Stewie: HA! That's so funny I forgot to laugh! Excluding that first
        --Family Guy

More information about the netfilter mailing list