Maybe I have missed somthing and you need to do it in POSTROUTING but how about SNAT. PS: ip can do stateless nat. On Tue, 2005- 10-25 at 14:36 +0200, Daniel Frederiksen wrote: > Hello folks.. > > Does any of you know if it is possible to rewrite the ip src in a packet. > I have a problem involving a DMZ with external IP addresses routed > trough a single WAN IP. When the server initiates a connection, it looks > like it comes from the WAN ip instead of it's designated External IP > routed through the WAN. > So in short, Is it possible to rewrite the packet in the router, with > Iptables, to make it look like it comes from the external IP address > instead of the WAN IP of the router/firewall. > > Thank you very much for your time, I appreciate it. > > /Daniel Frederiksen > > > NB: Small diagram of the setup. > > DMZ GW/FW ISP/Internet > ----------------------------------------------------------------------- > Server #1 --| > e.f.g.h3/26 | > |---- Gateway/Firewall --- ISP WAN IP: a.b.c.d/30 > Server #2 --| a.b.c.d1/30 Ext. IP: e.f.g.h/26 > e.f.g.h4/26 e.f.g.h1/26 > ---------------------------------------------------------------------- > > _______________________________________________ > LARTC mailing list > LARTC@xxxxxxxxxxxxxxx > http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc _______________________________________________ LARTC mailing list LARTC@xxxxxxxxxxxxxxx http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
