[Shorewall-newbies] 2 IP

Tom Eastep teastep at shorewall.net
Tue Mar 2 07:30:37 PST 2004


On Tuesday 02 March 2004 07:24 am, Tom Eastep wrote:
> On Monday 01 March 2004 10:52 pm, Pegalinu wrote:
> > i have 2 IP address 202.202.202.11 and 202.202.202.12
> > i want my local network use irc on IP 202.202.202.12
> >
> > how to configure my shorewall
>
> Sorry -- Shorewall doesn't provide a way to do SNAT on a particular port.
> You will have to use an extension script
> (http://shorewall.net/shorewall_extension_scripts.htm) to do what you want.
>
> For example, if eth0 is your external interface and 192.168.1.0/24 is your
> internal network, then in /etc/shorewall/start:
>
> run_iptables -I eth0_masq -s 192.168.1.0/24 -p tcp --dport 6667 \
> 	-j SNAT --to-source 202.202.202.12

You will of course need to configure 202.202.202.12 as an address on your 
external interface (eth0 in the above example); your distribution will 
provide a way to do that.

-Tom
-- 
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep at shorewall.net




More information about the Shorewall-newbies mailing list