[4096] in linux-net channel archive
Re: IP Address Translation
daemon@ATHENA.MIT.EDU (Alan Cox)
Mon Aug 19 05:32:53 1996
From: Alan Cox <alan@cymru.net>
To: niemi@wauug.erols.com (David C Niemi/Administrator/DCLinux/LUGMAN/WAUUG)
Date: Mon, 19 Aug 1996 09:24:47 +0100 (BST)
Cc: linux-net@vger.rutgers.edu
In-Reply-To: <Pine.LNX.3.94.960818170139.19125D-100000@wauug.erols.com> from "David C Niemi/Administrator/DCLinux/LUGMAN/WAUUG" at Aug 18, 96 05:11:27 pm
> I have several people now interested in doing 1-1 address translation at a
> router, including some large sites. Can Linux do this now? I have heard
> some Cisco routers do it.
This is the cisco PIX. Its a nice toy (Im typing through one at the
moment).
> addresses in a large block to a different block of addresses in a 1-1
> manner, though for migration purposes there may be a mix of addresses in
> the "inside" and "outside" blocks on a temporary basis.
>
> This sounds easy in general but may fail for things like talk which embed
> IP addresses inside the data.
The PIX does all the same kind of things Linux masquerade does, and also
knows how to rewrite ICMP errors. Masquerade maps to ports, the PIX maps
to addresses. Functionally apart from that there is no difference.
Alan
