Jesse Molina wrote:
That's a pretty good suggestion, but it's more of a workaround than
something that actually addresses the issue at hand. I'm looking for a
solution on the GNU/Linux host, not in the world around it.
To restate my question: What alternative ways are there to make the
GNU/Linux system reply to ARP requests for an IP, without that IP being
an actual interface on the host, or that interface must not be used by
local services *in any way*, for the reasons of using it via SNAT/DNAT?
Hi Jesse,
Looking through the ebtables man pages this is found:
arpreply
The arpreply target can be used in the PREROUTING chain of the
nat table. If this target sees an ARP request it will automatically
reply with an ARP reply. The used MAC address for the reply can be
specified.
This is also available as a qualifier:
--ip-destination The destination IP address.
You'll need to catch the specified macs when the traffic comes in.
Those targets are also available in ebtables.
Seems like all the pieces you want are available.
Hope that is useful in some way.
:m)
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
