On Monday 22 November 2004 11:59, you wrote: > On Sat, 20 Nov 2004, Peter Volkov Alexandrovich wrote: > > Just wanted to note that, this feature is really want to. It is fast, > > understoodable way to do NAT. Without bycicle on behalf of virtual > > interfaces on iptables... > > What virtual interfaces? Yes. I think it's a bit excessive to use ip utitlity to add additional address to interface and then to use iptables to make DNAT and SNAT to map LAN's ip address on external internet's ip address. It's much more naturally to use two commands with ip utility and route nat. Just one direction DNAT (ip route add nat ...) and another direction SNAT (ip rule add nat ...). Very simple. Furthermore. I even knew nothing about speed improvements of route nat. But it exist. So. I think route nat was the very appreciable feature of linux. Now it's dead. -- ______________________________________ Volkov Peter, <pvolkov@xxxxxxxxxxx> Moscow State University, Phys. Dep. ______________________________________ NO ePATENTS, eSIGN now on: http://petition.eurolinux.org and maybe this helps... Linux 2.4.26-gentoo-r9 i686 Mobile Intel(R) Celeron(R) CPU 1.60GHz - : send the line "unsubscribe linux-net" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
