On Sunday 2009-04-26 18:22, Kristian Evensen wrote: >> >> I am just rethinking this. There are cases where we do not want MAC punning. >> (E.g. when a packet still needs to be routed through another gateway >> instead of being delivered directly to the final ethernet segment.) >> >> Is --to-mac aa:bb:cc:dd:ee:ff sufficient, or did you want --to-mac IPaddr? > >The last one would be the easiest to use and would therefore be >desirable. However, forcing the user to write the full MAC-address >might limit scenarios where it is used wrongly. You know what, I am just pushing rawnat out now (merged into master as of today), and everything else is "patches please" :-) It does work for modifying packets-in-transit as a start. Have not tested local address manipulation tho. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
