Using Linux NAT like Checkpoint Firewall-1?
|
Hi, everyone. I have two questions:
Firstly, I have recompiled my kernel 2.0.33 with the NAT patches and the module is loaded. I am adding rules with ipnatadm, and then trying to list the rulebase with "ipnatadm -l". Nothing is coming up. Is this just a problem with ipnatadm, or is the kernel part failing? Secondly, what I am trying to do is this. I have a genuine network, say 1.1.1.x, and my Linux host is on it, as 1.1.1.252 (eth0). I also have a second network at the back of the Linux box, 192.168.200.x, and a web server on that network, 192.168.200.2. The Linux address is 192.168.200.1 on eth1. What I want to do is make the web server appear on the 1.1.1.x network as 1.1.1.160. I have done this before with Firewall-1 on NT, by putting an arp entry for 1.1.1.160 to point to the Linux machine eth0. The packets get redirected into the Linux machine, then translated, and then routed out of eth1. The benefit is that there is no routing change to the 1.1.1.x network, and the Linux box isn't even seen as a router. I would appreciate any help with this. Thanks, Paul P.S. Nice paper Michael, and great software.
|
Messages
Outline:
Im doing it by rolfc@hehe.com, 2/02/98
It's work only inside.. by SiFu, 2/05/98
ports distributing by Roberto Favaro, 2/09/98 
tcp port redirection by Michael J. Maravillo, 2/09/98 
...should be done using something else by Michael Hasenstein, 2/10/98
How to use port forwarding... by Keith, 12/22/98 
ICQ with IPMASQ by SiFu, 12/22/98
How to do a NAT with Linux ipchains?? by Hunter Nguyen, 6/03/99
How to do a NAT with Linux ipchains?? by Hunter Nguyen, 6/03/99
