Irvin, Michael Thad wrote:
I'm kinda new at this iptables thing. I've been running into a problem with trying to NAT for a class C subnetted class A network...i.e. 10.168.1.0/24. The syntax I've been using is as follows -- $ipt -t nat -A POSTROUTING -o $outside -j SNAT -to-source $lan, with the variable $lan = "10.168.1.0/24". Everytime I've ran the script I get the following error <iptables v.x.x.x Bad IP Address. Can anyone please help me with the proper syntax to make this work? I've tried various options such the one above, also including the whole subnetmask and playing around with different delimitation options, nothing seems to work.
Check out "MASQUERADE" target ;)
with masquerade u can SNAT all comunication that "match" your rule with the IP Address of output interface.
so a rule like
$ipt -t nat -A POSTROUTING -o $outside -j MASQUERADE
should be the trick.
Byez
