IP firewall configuration question

Stephen Williams (steve@icarus.icarus.com)
Thu, 11 Dec 1997 10:54:25 -0800

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: teunis: "Re: X and VT-switching bug?"
Previous message: Richard Henderson: "Re: kerneld & binfmt_aout"

This is pretty network administration specific, but involves work done here
so maybe this is the right place for this question.

I have a Linux/SPARC 2.0.32 machine set up as a masquerading firewall. I want
masquerading to happen in general, but for a few addresses in the distant
internet, I want the packets to be forwarded without masquerading.

In other words, I want to provide non-masqueraded access through the firewall
only for specifically listed remote lans. (several hops away.)

How do I set this up? Can the kernel even do this? I guess the question
is whether the source/destionation addresses are the IP source/destinaiton
or the last hop.

-- Steve Williams steve@icarus.com steve@picturel.com

"The woods are lovely, dark and deep. But I have promises to keep, And lines to code before I sleep, And lines to code before I sleep."

Next message: teunis: "Re: X and VT-switching bug?"
Previous message: Richard Henderson: "Re: kerneld & binfmt_aout"