[K12OSN] iptables
me
me at todhackett.com
Mon Apr 29 19:38:45 UTC 2013
On Sat, 27 Apr 2013 11:44:51 -0400, michel wrote
> On Saturday 27 April 2013 11:33, Michel Donais wrote:
> > Thanks Jim to care my request,
>
> Here is my iptables -L
[snip]
192.168.0.100 - 192.168.0.109 needs to be masqueraded or dnat'd through 192.168.2.210
If you are worried about people on your local wan ( 192.168.2.210 ) getting to the TC's
or terminal server then keep your current rules ( but add Masq, or Dnat ). If you are
not worried, set everything:
input -i eth? -j ACCEPT
forward -i eth? -j ACCEPT
output -o eth? -j ACCEPT to keep stuff simple.
You just need to add a 'prerouting' statement.
-t nat -A PREROUTING -o eth(192.168.2.210 is on ) -j MASQUERADE
I don't remember the dnat syntax just now. www.netfilter.com for syntax
--
Todd Hackett Chief Bottle Washer
PoBox 1168
Libby, MT 59923
406.291.6241
More information about the K12OSN
mailing list