> > > iptables -t nat -I PREROUTING --source 207.155.252.12 -p tcp --dport 777 > > > -j DNAT --to-destination 198.81.129.101 > > > iptables -t nat -I POSTROUTING -p tcp --dport 777 -s 207.155.252.12 \ > > -d 198.81.129.101 -j SNAT --to-source 198.81.129.100 > > Thanks... but I wanted to keep the original source. Sorry, udp is > really what I've got in mind here, I was just using tcp because it's > easier to test with "telnet 198.81.129.100 777" than it is to fire up a > program to create a UDP packet. > > What I'm looking for is for queries to one DNS server from certain IP > addresses to be redirected to another... but without any interaction > with the BIND daemon itself. can you provide a more detailed description of the network architecture? it is unclear to me what you're actually trying to do. is 198.81.129.101 a gateway, or just a host? where is 207.155.252.12 in relation to the 198.81.129 network? where's the default gateway in this situation? thanks. -j
