Hello Marco,
You're assuming that the man page accurately describes the behavior
of the code (which normally is the case). But how about doing a quick
test as suggested by Derick just to be sure. Could be a bug?
Have a Great Day!
Bruce...
-----Original Message-----
From: netfilter-bounces@xxxxxxxxxxxxxxxxxxx
[mailto:netfilter-bounces@xxxxxxxxxxxxxxxxxxx] On Behalf Of Marco
Berizzi
Sent: Tuesday, September 20, 2005 9:17 AM
To: netfilter@xxxxxxxxxxxxxxxxxxx
Subject: Re: snat to multiple source ip
Derick Anderson wrote:
> Uneducated, lazy guess: the SNAT target supports only one "--to [IP]"
> and the command parser ignores the extraneous "--to [IP2]". You can
test
> this by switching the two IPs and see if you go out on a different
> address.
Nope!
>From "man iptables":
"...You can add several --to-source options. If you
specify more than one source address, either
via an address range or multiple --to-source options, a
simple round-robin (one after another in
cycle) takes place between these adresses."
