[4174] in linux-net channel archive
Re: IP Masquerading/Routing problem
daemon@ATHENA.MIT.EDU (Stewart Allen)
Fri Aug 23 23:57:50 1996
Date: Fri, 23 Aug 1996 23:41:24 -0400 (EDT)
From: Stewart Allen <stewart@neuron.com>
Reply-To: Stewart Allen <stewart@neuron.com>
To: Christoph Lameter <clameter@miriam.fuller.edu>
cc: submit-linux-dev-net@ratatosk.yggdrasil.com
In-Reply-To: <4vlm8r$e97@miriam.fuller.edu>
On 23 Aug 1996, Christoph Lameter wrote:
> Add a rule to the forwarding chain in front of the masquerading rules simply
> accepting the routes that should not be masqed. Works here.
I have a similar setup at home and I tried masquerading on the outbound
interface instead of not specifying an interface for the forwarding
rule. This seems to do the trick. We'll see Monday when I get back in
the office.
---
ipfwadm -F -a a -S source -D dest -m -W DMZ_INTERFACE
instead of
ipfwadm -F -a a -S source -D dest -m
seems to fix it.
---
I stumbled across your suggested fix this afternoon and that's the way
it stands now, however, if the above works then it's less rules.
Thanks for the help.
+-
| Stewart Allen ftp.neuron.com
stewart@mail.neuron.com http://www.neuron.com
617.492.2089 FAX 617.492.5837 Neuron Information Systems |
-+
