Here is a small picture and the iptables commands # # Setup masquerading for DMZ AND LAN # # ETH1: External (212.23.129.186) # | # +----------------+ # | NATBOX | # +----------------+ # ETH2:10.2.0.1 / \ ETH0: 10.1.0.1 # / \ # / \ # DMZ +-----------+ +------------+ LAN # # # SNAT all outgoing traffic # iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE # # DNAT all incoming traffic to out DMZ WEB and MAIL Server (10.2.0.2) # # iptables -t nat -A PREROUTING -i eth1 -j DNAT --to 10.2.0.2 #
- AW: snat dnat question Thomas Hilgert
- Re: AW: snat dnat question Antony Stone
- Re: AW: snat dnat question Antony Stone
- RE: AW: snat dnat question Thomas Hilgert
- Re: AW: snat dnat question Thomas Hilgert
- Re: AW: snat dnat question Antony Stone
