[4095] in linux-net channel archive
Re: IP Address Translation
daemon@ATHENA.MIT.EDU (Matti E Aarnio)
Mon Aug 19 02:58:46 1996
From: Matti E Aarnio <mea@mea.cc.utu.fi>
To: niemi@wauug.erols.com (David C Niemi/Administrator/DCLinux/LUGMAN/WAUUG)
Date: Mon, 19 Aug 1996 09:19:48 +0300 (EET DST)
Cc: linux-net@vger.rutgers.edu
In-Reply-To: <Pine.LNX.3.94.960818170139.19125D-100000@wauug.erols.com> from David C Niemi/Administrator/DCLinux/LUGMAN/WAUUG at "Aug 18, 96 05:11:27 pm"
> I have several people now interested in doing 1-1 address translation at a
> router, including some large sites. Can Linux do this now? I have heard
> some Cisco routers do it.
I don't see any reason that it would be any simpler (or more
difficult, for that matter) than masquerading.
> Network Address Translation differs from masquerading and proxying in that
> each host has a unique IP address on the "outside" network, but may be
> using a different address inside. It would be sufficient to translate any
> addresses in a large block to a different block of addresses in a 1-1
> manner, though for migration purposes there may be a mix of addresses in
> the "inside" and "outside" blocks on a temporary basis.
>
> This sounds easy in general but may fail for things like talk which embed
> IP addresses inside the data.
It needs all the same protocol specific tricks that masquerading
does. Rules for the selection of a new address for inside one
are a bit different; so what ?
> David
> Niemi@linux.wauug.org 703-810-5538 Reston, Virginia, USA
> ------ Money talks, but it is wrong half of the time. -----
/Matti Aarnio <mea@utu.fi>
