Is it that simple? I had the thought that that would make IPTABLES to masquerade everithing... I mean: first rule will say MASQUERADE everything but 192.168.20.0/26 and the seccond one will say MASQUERADE everything but 192.168.40.0/26 so every IP (even those inside those networks) will always find a rule to go MAQUERADED... -----Original Message----- From: Alexis [mailto:alexis@xxxxxxxxxxxx] Sent: Lunes, 01 de Marzo de 2004 12:08 p.m. To: gparra@xxxxxxxxxxxxxx Cc: Netfilter Subject: Re: How to invert more than one destination network? add a new line with the second network :) On Mon, 2004-03-01 at 12:58, Gonzalo Parra wrote: > Hi > > I have MASQUERADE in a box as a gateway using IPTABLES and I am using > that box also for VPN... so for it to work I cant masquerade thaffic > that goes to the other side of the VPN... > > This works for me: > > IPTABLES -t nat -A POSTROUTING -o $EXTIF -d \! 192.168.20.0/26 -j > MASQUERADE > > but now I have another network at the other side of the VPN > (192.168.40.0/26), so how can I invert two networks in the -d??? > > Thanks, > > Gonzalo Parra > Network Administrator > Tel: +58 (212) 265-5330 > Cel: +58 (414) 240-4054 > Caracas, VE > ..................................... > > -- Tus problemas no se pueden resolver en el mismo nivel mental que tenías cuando los creaste. Albert Einstein
