machine A in network a.0/24 with gateway a.254
and machine B in network b.0/24 with gateway b.254
b is routed to a, but not to the inetnet. a has full internet routing.
tunnel from a to b. packets entering the tunnel at host b have a source
in b.0/24 and a destination of anything other than a.0/24 and b.0/24.
how to configure machine a ?
routing: no forwarding, local network a.0/24, default gateway a.254
filter: only accept tunnel packets from b
filter: the tunnel may not contain packets from or to a.0/24
routing: every packet coming out of the tunnel should be masqueraded
and forwarded (to the gateway a.254).
routing: every packet demasqueraded should be routed to
it�s source in b.0/24 via the tunnel.
is this possible ? how ? i guess it will work with the firewall marks,
but i�m not sure how the tunnel stuff interacts with the whole firewall stuff.
i�m useing 2.2/ipchains, if this matters. willing to include any kernel patch,
as long as i can stick to the stable series 2.2.* ...
thanks for your help.
andreas
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
