On Thu, 2003-01-23 at 23:53, Pablo Allietti wrote: > Hi again, please help me. > > i have 2 network one internal and other external/public > > 192.168.1.1 > > all my clients have one address 192.xxxxx i need when we navigate in > internet assumming a public address > example > > > 192.168.1.4 ----> 200.40.226.99 > 192.168.1.5 ----> 200.40.226.43 > 192.168.1.45 ---> 200.40.226.75 Do you really want this or do you just want all internal machines to have access? Do you really have as many (external) ipaddresses as you have machines? Would this do: 192.168.1.4 \ 192.168.1.5 --> 200.40.226.x 192.168.1.45/ > Its this possible with iptables or something???? and the inverse mode > too. You can do this with masquerading, through iptables. Established and related connections can get back in, and other connections can be dropped, or for ssh you can let them in. > > When in other network make a ssh 200.40.226.99 go to 192.168.1.4 To begin with, you'd have to ssh to the firewall, and then ssh to the particular internal machine. I think you can achieve this with ssl tunnels or ssh forwarding. You would then connect the firewall (from outside) but depending on which port you would get redirected to ssh on an internal machine. -- Iain Buchanan <iain@nospam.pcorp.com.au> "I have just one word for you, my boy...plastics." - from "The Graduate"
Attachment:
signature.asc
Description: This is a digitally signed message part
