On Thu, Apr 14, 2005 at 10:25:27AM -0700, Gary W. Smith wrote:
> I have a set of external IP's which are SNAT'd/DNAT's to a private
> range. On this particular network there are 64 of them. In the part we
> create a 1:1 SNAT and a 1:1 DNAT for each IP. Since we have a /26 is it
> possible to do this in a single line rather than having 64 entries? I
> know that if we specificy multiple --souce or --destinations it says it
> will do round robin, which is not what we want.
this is the job of the NETMAP target. and you would do it in two rules,
one POSTROUTING (SNAT), and one PREROUTING (DNAT).
HTH...
-j
--
"Stewie: HA! That's so funny I forgot to laugh! Excluding that first
'ha.'"
--Family Guy
