Menu
▾
▴
Re: [Shorewall-users] Nat a whole subnet in one another subnet
|
From: Tom E. <te...@sh...> - 2002-09-17 15:18:43
|
Jérôme Tytgat wrote: > Maybe this has been already answered : > > How can you nat a whole subnet into another one, > for example I want to NAT 192.168.0.0/24 (local network) in 192.168.2.0/24 > (dmz network), so > I can do single nat (one translation by ip) and i'm not disturbed anymore by > PAT problems > and I can hide my real IP (no routing). > There was a feature in the NetFilter Patch-O-Matic to allow this to be done with a single rule but it hasn't made it into the released version as far as I know. Until it does, you get to put all 253 entries in your /etc/shorewall/nat file (or write a 10-line shell script to build the file for you). -Tom -- Tom Eastep \ Shorewall - iptables made easy AIM: tmeastep \ http://www.shorewall.net ICQ: #60745924 \ te...@sh... |