[TriLUG] iptables masquerading question
steve at kuekes.homeip.net
Tue Mar 31 13:01:36 EDT 2009
Here's my answer to my own question....
I've got a solution that routes all the traffic from one of my internal
ip's out the xxx.155 address using
-A POSTROUTING -o eth1 -s 192.168.1.59 -j SNAT --to-source xxx.xxx.xxx.155
This appears to work
Steve Kuekes wrote:
> I've got a interesting requirement that I need to implement in my
> firewall/NAT which is running Linux using iptables.
> I've got multiple static IP addresses coming into my linux firewall and
> the firewall listens to them using eth1 as 74.xxx.xxx.153 and eth1:0 as
> 74.xxx.xxx.154 and eth1:1 as 74.xxx.xxx.155. Normally my outbound
> masquerade traffic is sent out the using the xxx.153 address. I have a
> vendor that needs my source address to be the same as my https secure
> web server which happens to be on xxx.155. So how do I get iptables and
> /or the kernel routing tables to send outbound traffic that is destined
> for a specific internet IP address out the eth1:1 adapter rather than
> the default eth1 guy?
> Any suggestions would be appreciated...
Insight Racing - Urban Grand Challenge('07) - http://www.insightracing.org
Private Pilot: N9259R '95 Saratoga based at Sanford-Lee County Regional
email: skuekes at nc.rr.com
More information about the TriLUG