Hi, When using NAT, I often use "iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE" to masquerade the source IP. My problem is that my NAT is behind a firewall (controlled by the SA), and the firewall will check the MAC address of outgoing packet. The eth0 of the NAT is the only legal card that allows to go outside. Because the NAT only change the source ip address of packets, the machines behind NAT are not allowed to go outside because of the lack of legal mac address. I'm wondering if there is anyway to change the source ip and mac address of the NAT packets to those of eth0(the legal one)? or any suggestion to solve the problem? Thanks.
