RE: NAT on multihomed host

From: Martin Ferrari - Decidir IT (mferrari@decidir.net)
Date: Mon Jan 21 2002 - 10:33:00 EST


> > That is what I was suspecting... But why is it this way?
> NAT isn't done in
> > PRE-routing??
> >
> de-DNAT is a kind of SNAT (with automatically constructed
> rules). As such it's
> located in POST-routing (where all SNAT is done). I would
> find it better, to
> construct the automatic rules in (an) extra chain(s), which
> can be called at
> convenient places (and if not where it's now) by user rules.
> If you could patch
> the kernel accordingly it would be the best solution. Another
> solution would
> be to rely on the "mark connection" feature.

Sadly, I'm no kernel hacker and will have to use actual code.. :(

-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html



This archive was generated by hypermail 2b29 : Wed Jan 23 2002 - 21:01:13 EST