Re: lug-bg: Problemi pri linux 2.4 i NAT sus iptables
- Subject: Re: lug-bg: Problemi pri linux 2.4 i NAT sus iptables
- From: ntk@xxxxxxxxxx (Nikolay Kabaivanov)
- Date: Tue, 18 Dec 2001 18:29:21 +0200
Zdrawej
Taka e praw si za static nat stawa duma ili Source NAT (SNAT).
Interfaceto sum go wdignal otdawna - inache wuobshte ne poteglia NAT-a
Problema e kak da potegli trafika i wuw 2-rata posoka t.e. ot router-a
172.16.31.110 kum wutreshnata mashina ?
Triabwa li tam da polzwam DNAT ? t.e. da napisha obratnoto prawilo ili
samo SNAT-a e dostatuchen ?
Vesselin Kotarov wrote:
>
> uhmz ... zashto li prez cqloto wreme si mislq, che stawa duma za static NAT,
> t.e. ne nqkakyw forwarding a prosto static (syshto izwesten kato
> "dwuposochen" ili "source") NAT. edinstwenoto, koeto mi idwa naum w momenta,
> e che na interface-a, kojto e s IP
> 172.16.31.100 trqbwa da mu se digne edin alias 172.16.31.110.
>
> hope this helps.
> bOmbe.
>
> ----- Original Message -----
> From: "Teodor Georgiev" <teodor@xxxxxxxxxxxxxxx>
> To: <lug-bg@xxxxxxxxxxxxxxxxxx>
> Sent: Tuesday, December 18, 2001 4:50 PM
> Subject: Re: lug-bg: Problemi pri linux 2.4 i NAT sus iptables
>
> >
> > ----- Original Message -----
> > From: "George Danchev" <danchev@xxxxxxxxx>
> > To: <lug-bg@xxxxxxxxxxxxxxxxxx>
> > Sent: Tuesday, December 18, 2001 2:19 PM
> > Subject: Re: lug-bg: Problemi pri linux 2.4 i NAT sus iptables
> >
> >
> > > A v tvoq slu4aj, kogato connectiona se iniciira/zapo4va "otvyn" i
> trqbva
> > da
> > > se prenaso4i traffica kym nqkoq maskirana machina togava Maskirastiqt
> > Server
> > > trqbva da mozhe da pravi PortForwarding na TCP/UDP/ICMP datagrami za
> WWW,
> > > FTP, SMTP i t.n. protokoli kym dadeniq maskiran host. "Otvun" oba4e se
> > > "tyrsi" Masq servera, a ne maskiranata machina (tq e nevidima) i tozi
> Masq
> > > server pranaso4va zaqvkite kym neq - internal IP :port. Kapish ? :)
> > > Taka mozhe da imash primerno maskiran web/ftp server kojto sedi zad
> > > Maskirasht Server, kojto osven tova go igrae i firewall i proxy za nqkoj
> > > services. ( i www.netcraft.com v slu4aq sa bezsilni da opredelqt
> > > webserver/OS... obiknovenno otkrivat OS-a na Firewall-a, a webservera si
> > > ba4ka zad nego na syvsem druga OS ;)
> > >
> > > 4etesh kak se pravi tova s iptables i 2.4 v IP-Masqueradee HOWTO trqbva
> da
> > > pishe, ako ne v IPTABLES HOWTO. A mozhe da pravish i PortForwarding i
> kym
> > > NE-maskirani mashini.
> > > Az ne sym go pravil oba4e.
> > >
> >
> > xinetd. raboti perfektno forwardinga. I drugi glezotii okolo nego mogat
> da
> > se naglasiat.
> > naprimer az sum si napravil prez rabotno vreme da si vurvi trafika kum
> edin
> > web server, a vecherta
> > se pravi port forwarding kum druga mashina.
> >
> > pushka!
> >
> >
> >
> >
> >
> >
> >
> > ========================
> ===================================================
> > A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
> > http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara
> Zagora
> >
>
> ===========================================================================
> A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
> http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora
===========================================================================
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora
|