[ale] One to one NAT mapping

[James Kinney]

iptables -t nat -A PREROUTING -d $REALADDRESS -j DNAT --to $INTERNALIP
iptables -t nat -A POSTROUTING -s $INTERNALIP -j SNAT --to $REALADDRESS

The first line will repoint the incoming packets to the actual address
used by the interface. The second will make the leaving packets appear to
have come from the real IP address.

This may be easier to do with ip aliasing. Just have the the real IP
address listed on the NIC and it will also pickup those packets as well as
the ones sent to the private net address.

James P. Kinney III   \Changing the mobile computing world/
President and COO      \          one Linux user         /
Local Net Solutions,LLC \           at a time.          /
770-493-8244             \.___________________________./

On Wed, 7 Mar 2001, Bao Ha wrote:

> 
> How do I map an external valid ip address to an internal private
> IP address through ipchains?  I don't want to use port-forwarding.
> 
> I think it should be easier, but can't seem to know how to do it.
> 
> Thanks.
> Bao
> 
> --
> To unsubscribe: mail majordomo at ale.org with "unsubscribe ale" in message body.
> 

--
To unsubscribe: mail majordomo at ale.org with "unsubscribe ale" in message body.