Login or Register to Ask a Question and Join Our Community


IP Networking

NAT question

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums IP Networking NAT question
# 1  
Old 11-07-2006
NAT question
i have a firewall with two interfaces eth0 and eth1, eth0 is connected to an external network, and eth0 is connected to a private lan.
im using this command for NAT

iptables -A POSTROUTING -t nat -s 192.168.0.0/24 -o eth0 -j SNAT --to-source 223.0.0.3

my questions are :

1) how can i check if the translation is being done correctly ?
2) can i use PAT in UNIX ?
# 2  
Old 11-15-2006
Quote:
Originally Posted by ratamahatta
i have a firewall with two interfaces eth0 and eth1, eth0 is connected to an external network, and eth0 is connected to a private lan.
im using this command for NAT

iptables -A POSTROUTING -t nat -s 192.168.0.0/24 -o eth0 -j SNAT --to-source 223.0.0.3

my questions are :

1) how can i check if the translation is being done correctly ?
Use a sniffer (tcpdump, ethereal) on the destination, for instance.
Quote:
2) can i use PAT in UNIX ?
I think you can.

Regards.
# 3  
Old 11-15-2006
You can simply see if it is going well ( IP translation ) , using an external web-page to see what IP are you shown . If you are shown the external IP , it work's ...

What do you mean by PAT , unde Linux systems ? Do you mean CISCO router's PAT ? I think you do .

You can simply use MASQUERADE ( MASQ ) - depending of your kernel version / iptables version or NAPT ..

PAT is the process , of translationg TCP/UDP pachets' IP address ..

I don't think you can , you must ( if you want ).


Cheer's ! Smilie
# 4  
Old 11-15-2006
Quote:
Originally Posted by !_30
You can simply see if it is going well ( IP translation ) , using an external web-page to see what IP are you shown . If you are shown the external IP , it work's ...
I forgot to mention that in Linux you can also have a look at /proc/net/ip_conntrack

Quote:
I don't think you can , you must ( if you want ).
You don't really have to, but anyway you can Smilie

Regards.
# 5  
Old 11-18-2006
thanks guys, it worked.
well yeah what i meant by PAT is masqurade Smilie
i didnt know what is it called in unix
Login or Register to Ask a Question

Previous Thread | Next Thread

10 More Discussions You Might Find Interesting

1. Solaris

OpenVPN and NAT

Hi. I am attempting to set up an OpenVPN server on my Solaris 11 box by following all the Linux guides. Thus far I have a working VPN that I can connect to and ssh onto my VPN server over which is great but not what I require long term. I would like to route all VPN client requests for addresses... (0 Replies)
Discussion started by: nickb1976
0 Replies

2. Infrastructure Monitoring

Snmp and NAT

Hello, I am facing this scenario: three or more remote LAN (peripheral offices), with the same devices (printers, NAS) in each of them. Those LANs have the same network addresses, i.e.192.168.1.* (are connected to WAN via NAT). I need to collect snmp traps from a central server (public IP).... (4 Replies)
Discussion started by: neutrino
4 Replies

3. Solaris

NAT IPFilter

Hi everybody, I'm running on Solaris 10 X86 (update 1009). I would like to make NAT's rule. I explain you. On Solaris, I configure the principal interface e1000g0 with IP : 192.168.0.33 I created the first logical interface like that : ifconfig e1000g0 addif 192.168.0.40 netmask... (0 Replies)
Discussion started by: aureliensm
0 Replies

4. Shell Programming and Scripting

NAT detection

hellou, can anybody help me with nat detection in real time ? i prefer some detection script because i try some nat detection program's for example p0f or i'm using tcpdump, but i would get contain of specific packet. Some ideas? (1 Reply)
Discussion started by: TheTechnic
1 Replies

5. IP Networking

L2 nat

Hi All, Is there any possibility to change the IP address of a package according to its MAC address. It would be a sort of L2 NAT. (i.e. If the MAC address is 00:1A:A0:1E:XX:XX so the dir IP will be 192.168.X.X) Thanks!. (4 Replies)
Discussion started by: lagigliaivan
4 Replies

6. IP Networking

NAT address

Hi Could anybody tell me the solaris command to display the NAT address Thanks in advance (5 Replies)
Discussion started by: axes
5 Replies

7. Programming

Compilation of the NAT tool

I was wondering if anyone has managed to compile the NAT ( Netbios Auditing Tool ( NOT network adress translation !) for a 2.6 + kernel version since it was written for an older version. (4 Replies)
Discussion started by: Shady_Creeper
4 Replies

8. BSD

proxy or NAT

how do i configure proxy in freeBSD or NAT so that when i set it up as a server can connect other to my new gateway (0 Replies)
Discussion started by: AkinOkin
0 Replies

9. IP Networking

NAT with proxy ARP question

Hello Gurus! I'm currently trying to configure NAT using proxy ARP on a SunOS 5.8 . This box is running Check Point FW1 that sits behind my internet router. I have a server that is connected to the firewall box. I want to translate this server using proxy ARP. Settings:... (1 Reply)
Discussion started by: azzuwan
1 Replies

10. IP Networking

FreeBSD - NAT

Hi All! I have a Pentium 100 (32 MBRAM) with FreeBSD 4.4 installed on it and I am using it as a gateway. When I am downloading (or uploading) stuff simultaneously I see that natd is using up to 100% of the cpu capacity, hence the internet connection becomes blocked. My guess is I will have... (1 Reply)
Discussion started by: Ivo
1 Replies
Login or Register to Ask a Question