Subject: Re: IPNAT
To: Carlos Castro <castor@vivirasturias.com>
From: Martin Husemann <martin@duskware.de>
List: tech-net
Date: 07/05/2004 12:10:31
On Mon, Jul 05, 2004 at 11:53:02AM +0200, Carlos Castro wrote:
> map fxp0 xxxxxxxx/xx - > zzzzzzzzzz/xx portmap tcp/udp 10000:60000 (this
> changes)
You can also do:
map fxp0 192.168.2.1/32 -> aaa.bbb.ccc.ddd/32
and (example only)
rdr fxp0 aaa.bbb.ccc.ddd/32 port http -> 192.168.2.1 port http
which does not affect port allocation. You need to map ports if you have
multiple machines hiding behind a single external one though.
If you use your example, but want external port 80 access to go to (say)
port 10000 on some internal machine, just rdr it:
rdr zzzzzz.xxx/32 port http -> yyyyyyyy.xxx port 10000
Martin