[NTLUG:Discuss] iptables / router problem
Greg Edwards
greg at nas-inet.com
Wed Apr 2 01:20:23 CST 2003
kbrannen at gte.net wrote:
> Anyway, I can see that I need to read more about iptables to do more fun
> things. But one line above has me wondering after reading the man page,
> I'm wondering about the line:
>
> iptables --table nat --append POSTROUTING --out-interface eth0 -j
> MASQUERADE
>
> Since I have a static IP from my ISP, the man page seems to indicate
> that I should use "SNAT" not "MASQUERADE". Yes or No?
>
> Thanks for the help guys! The TrinityOS site seems to have some useful
> stuff too.
>
> Kevin
>
I assume that since your internet IP is a direct connect you'll be
looking at firewall as well. I've come to be real partial to shorewall
which has a good discussion about SNAT vs MASQ you might want to peruse.
They just released 1.4 so I'll have to get to looking at that when
I've got some time.
www.shorewall.net
--
Greg Edwards
New Age Software, Inc. - http://www.nas-inet.com
======================================================
Galactic Outlaw - http://goutlaw.nas-inet.com
The ultimate cyberspace adventure!
More information about the Discuss
mailing list