search for: nodst

Hello everybody, I want to solve the following problem with Shorewall: I have a computer with one NIC (eth0) with an internal IP address (10.1.x.x), which is supposed to accept connections from various clients (10.2.x.x) and redirect them to another IP address (10.3.x.x) with a different destination port. For example: The software on the client computer is told to connect to the Shorewall

...bound nat to each user to connect out to the ipsec connection, so we have a one to one mapping from public ip to private ip. this way we can tell the remote ipsec gateways the correct source address. Just to confirm: Is this the only way of handling lots of outbound ipsec connections? Does the same:nodst combo in /etc/shorewall/masq help with managing this? Is there anyway I can make all the ipsec connections appear to come from the same ip? any pointers or help much appreciated. thanks dave

...of address ranges in the ADDRESS column with "SAME:" Example: SAME:206.124.146.176-206.124.146.180 If you want each internal system to use the same IP address from the list regardless of which internet host it is talking to then prefix the ranges with "SAME:nodst:". Example: SAME:nodst:206.124.146.176-206.124.146.180 Note that it is not possible to map port numbers when using SAME. In the rules file, when multiple connections from an internet host match a SAME rule then all of the connections will be sent to the same in...

...ence of a network interface named ''inet''. 3) A shell syntax error was reported when duplicate policies appeared in /etc/shorewall/policy. 4) The iptable_nat and iptable_mangle modules were previously omitted from /etc/shorewall/modules. 5) If you use SAME or SAME:nodst in the ADDRESS column of /etc/shorewall/masq and if you set ADD_SNAT_ALIASES=Yes in shorewall.conf, then "shorewall start" will fail with the error ''Error: an inet prefix is expected rather than "SAME".''. 6) Previously, the ''routeback&...

Hello everybody. I''m running linux 2.6.19 with nth match to alternatively snat outgoing connections to two different ip addresses for load balancing between two adsl lines: Here is: $IPTABLES -t nat -A POSTROUTING -s my_ip --protocol tcp -m multiport --dports 80,443 -m statistic --mode nth --every 2 -j SNAT --to adslA $IPTABLES -t nat -A POSTROUTING -s my_ip --protocol tcp -m multiport