Requirements for a NAT system.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Dear All,
 
I am under a process to get the following developed. Before I begin, please let me know if you have any views/already development done along these lines.
 
Requirements for a NAT system.
Objectives of the system:
 Provide online customers with individual public IPs to conserve public IP addresses.
Scenario:
 Currently all customers are assigned private IP addresses. They are being NAT overloaded (CISCO term)/SNATed
(iptables term) to a single public IP address. Several applications do not work due to the reverse connections not allowed to
be initiated into the customer equipment directly.
 There are several subnets to be controlled, can't have DHCP implemented per subnet.
Required:
 List of allowed public IP to be allocated
 List of allowed private IP to be processed
 Provide static allocation of public IP to private IPs on one to one basis.
 Allocate an available public IP to a private IP on detection of an outgoing connection.
 A session is considered when an initial outgoing connection from a customer is detected upto the time when the
customer does not have traffic for 10 continious minutes.
 Create a one-to-one NAT rule so that the customer private IP is NATted to the public IP for a session.
 This will allow customer to accept connections on the public IP address assigned for that session.
 After a session ends the public IP should be made available for another customer
 Logging - Session id, start time, private IP, public IP, end time, number of bytes passed tx and rx, etc.
 
Regards,
 
Murli
 

Do you Yahoo!?
SBC Yahoo! DSL - Now only $29.95 per month!
[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux