On Wed, 6 Mar 2002, [iso-8859-1] Clément Moreau wrote: > Let's imagine this setup : > > PC1 --- NAT router 1 ---- NAT router 2 ---- PC2 > > with PC1 : 192.168.0.9 > NAT 1 : 192.168.0.1 and 80.13.55.223 (for example) > NAT 2 : 192.168.0.1 and (for example) > and PC2 : 192.168.0.25 > > I think i found the reason why it doesn't work if PC1 and PC2 had the same > addresses.
> The problem is, the modules do not modify h245 packets in the right way, it > does not modify the first IP address that appears, but only the last one. No. The NAT module (and the conntrack part as well) is very primitive: it changes only the "IP-address port" "sequences" in the packets. Naked "IP-address" sequences remain unmodified. The current "algorithm" cannot be fixed. A true H.323 interperter should be written instead. Regards, Jozsef - E-mail : [EMAIL PROTECTED], [EMAIL PROTECTED] WWW-Home: http://www.kfki.hu/~kadlec Address : KFKI Research Institute for Particle and Nuclear Physics H-1525 Budapest 114, POB. 49, Hungary
