Re: How to SNAT in PREROUTING table for local machine

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On 06/19/08 07:06, Tobias Krummen wrote:
So, is there a way to change the source ip-address of incoming packets with the given possibilities of netfilter, or are there other tools to get this done?

You might look in to trying to use bridging. Bridge the VPN interface(s) and bind your service to the bridge interface. This would allow you to use EBTables to alter traffic as it comes in to the system.

Another option would be to use some sort of proxy application (like rinetd or socat) to accept the connections and then proxy them in to your service. Your service would see all the connections as coming from the rinetd daemon's IP but at least all your /8 systems would be able to connect to the service.



Grant. . . .
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at  http://vger.kernel.org/majordomo-info.html

[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux