[Shorewall-newbies] 2 IP

Tom Eastep teastep at shorewall.net
Tue Mar 2 07:24:18 PST 2004


On Monday 01 March 2004 10:52 pm, Pegalinu wrote:
> i have 2 IP address 202.202.202.11 and 202.202.202.12
> i want my local network use irc on IP 202.202.202.12
>
> how to configure my shorewall

Sorry -- Shorewall doesn't provide a way to do SNAT on a particular port. You 
will have to use an extension script 
(http://shorewall.net/shorewall_extension_scripts.htm) to do what you want.

For example, if eth0 is your external interface and 192.168.1.0/24 is your 
internal network, then in /etc/shorewall/start:

run_iptables -I eth0_masq -s 192.168.1.0/24 -p tcp --dport 6667 \
	-j SNAT --to-source 202.202.202.12

-Tom
-- 
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep at shorewall.net




More information about the Shorewall-newbies mailing list