On September 1, 2004 02:12 pm, Matevz wrote: > Na 1094056052, 2004-09-01 ob 18:27, je Alistair Tonner napisal(a): <SNIPPAGE> > > iptables -P FORWARD DROP > > > > iptables -A FORWARD -s [LAN_SEGMENT] -i [LAN_DEVICE] -d 0.0.0.0 -j > > ACCEPT iptables -A FORWARD -d [LAN_SEGMENT] -m state --state > > RELATED,ESTABLISHED \ -j ACCEPT > > > > > > iptables -A POSTROUTING -o [INTERNET_DEVICE] -j MASQUERADE > > or > > iptables -A POSTROUTING -o [INTERNET_DEVICE] -j SNAT -to [internet > > address] > > > > > > keep in mind that you might want to review the ORDER in which the rules > > load .... it can be critical as to what gets processed when > > > > iptables -Lnvx > > iptables -Lnvx -t nat > > iptables -Lnvx -t mangle. > > > > > > > > Alistair Tonner > > Thank you for ansver, but i think i will give up on this. > > iptables -I POSTROUTING -p tcp -i eth0 -d 192.168.2.1 --dport 25 -j SNAT > -to 192.168.2.2 > > than i get this: > > Bad argument `192.168.2.2' Okay ---- @swat=me for not double checking my syntax iptables -I POSTROUTING -p tcp -i eth0 -d 192.168.168.2.1 --dport 25 -j SNAT --to-source 192.168.2.2 Alistair Tonner
