Subject: Re: Stumped on Aliases
To: =?iso-8859-1?Q?P=E5llen?= <pollen@astrakan.hig.se>
From: David A. Gatwood <dgatwood@deepspace.mklinux.org>
List: tech-net
Date: 11/05/2000 23:37:20
On Mon, 6 Nov 2000, P=E5llen wrote:
> On Sun, 5 Nov 2000, David A. Gatwood wrote:
>=20
> > =09map sn0 10.0.0.0/24 -> 0/32 portmap tcp/udp 40000:60000
> > =09man sn0 10.0.0.0/24 -> 0/32
> > =09map ae1 192.168.0.0/24 ->0/32 portmap tcp/udp 20000:40000
> > =09map ae1 192.168.0.0/24 -> 0/32
>=20
> iirc you can't do that. You have to specify the adress of each interface
> then. Like
>=20
> map ae1 192.168.0.0/24 -> 192.168.0.1/32
It works fine for one source/destination. I've been doing the NATting for
the 10.0.0.0/24 network for about a year w/o problems. It's just the new
192.168 rules that clog up the works. I assume you actually mean
=09map ae1 192.168.0.0/24 -> real_outside_address_of_ae1/32
rather than 192.168.0.1, in which case, I already tried that for both
outside interfaces. Got the same behaviour. If that's not what you mean,
then I'm a bit puzzled about what you mean.
David
---------------------------------------------------------------------
Check out my weekly web comic:
http://www.techmagazine.org