On Tuesday 20 July 2004 3:33 pm, Markus wrote: > HiHo! > > I hope he doesn't want connection tracking, as IMHO he will > only see UNREPLIED connections. Why? Netfilter will see the packets go out, adn it will see the replies come back in. It won't care how they got to/from the Internet. > Isn't this a problem for the nat-modules, like ftp? I think they should work exactly as they do for a single connection setup. If he had two separate netfilter machines, now *that* would be difficult to handle... Regards, Antony. > > -----Original Message----- > > From: netfilter-admin@xxxxxxxxxxxxxxxxxxx > > [mailto:netfilter-admin@xxxxxxxxxxxxxxxxxxx]On Behalf Of Antony Stone > > Sent: Dienstag, 20. Juli 2004 16:24 > > To: netfilter@xxxxxxxxxxxxxxxxxxx > > Subject: Re: 2 dif. connections separated > > > > On Tuesday 20 July 2004 3:13 pm, Pablo Allietti wrote: > > > i have 2 router to internet 1 for 200.40.226.65 and other with > > > 200.40.224.65 > > > > > > is possible to divide this connections to make > > > > > > 200.40.226.64 // outgoing traffic > > > > > > 200.40.224.64 // input traffic ??? > > > > > > with iptables ? > > > > Yes. Set the default gateway for the router to point up 200.40.226.64's > > link, and use SNAT to set all packets to have source address > > 200.40.224.65. > > > > Then hope the ISP doesn't do strict ingress / egress filtering... :) > > > > Regards, > > > > Antony. > > > > -- > > Most people have more than the average number of legs. > > > > Please reply to the > > list; please don't CC me. -- The lottery is a tax for people who can't do maths. Please reply to the list; please don't CC me.
