On 06/12/2010 10:09 PM, Tom Eastep wrote: > On 6/10/10 7:47 AM, Farkas Levente wrote: >> hi, >> i'd like to natmap on our firewall from 1.2.3.0/24 to 1.2.4.0/24, but >> only in that case if the destination is in 2.3.4.0/24,2.3.5.0/24. is it >> possible somehow? currently i can't specify destination in netmap file. >> and there is no such rule as NETMAP in rules? so what can i do? >> thanks in advance. >> > > I assume that you want this capability in SNAT NETMAP rules?
both in snat and dnat case! the full story is that we use 192.168.0.0/24 as our private network, but we've to connect to a remote network with ipsec. they also use the same network internally, so they assume we use 172.22.80.0/24. so i'd like to netmap our network but only that case if the source/destination is in her network (which is a dozen of private and public network range). -- Levente "Si vis pacem para bellum!" ------------------------------------------------------------------------------ ThinkGeek and WIRED's GeekDad team up for the Ultimate GeekDad Father's Day Giveaway. ONE MASSIVE PRIZE to the lucky parental unit. See the prize list and enter to win: http://p.sf.net/sfu/thinkgeek-promo _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
