> From my understanding, you CANNOT MASQ out an aliased interface.
> You must masq out eth0, eth1, etc. You can make the private
> networks eth0:1, etc though.
>
> --David
Why not? Is it not possible for some low level reason, or just
because it can't handle aliases as written? Could a dummy interface
be MASQ'ed (since I can accomplish the same thing with a dummy
interface)?
This is a serious problem, because a number of corporations have
firewalls that only allow users to access web servers via port 80,
and I need my extranet we servers to be behind a firewall. So this
means I must have multiple MASQ'ed ports on the same network. Using
multiple NIC is not a scalable answer, and NAT doesn't meet my
requirements (multiple machines behind *each* address)
FYI ipmasqadm doesn't seem to object to being asked to MASQ aliases.
-Paul
_______________________________________________
Masq maillist - [EMAIL PROTECTED]
http://tiffany.indyramp.com/mailman/listinfo/masq
Admin requests can be handled by web (above) or [EMAIL PROTECTED]
