LinuxSA Mailing list archives

Index: [thread] [date] [subject] [author] [stats]

  From: Andrew Reid <andrew.reid@plug.cx>
  To  : David Rowlands <davidr@empower.com.au>
  Date: 31 May 2001 11:54:48 +0930

Re: ip masquerading

On 31 May 2001 10:38:50 +0930, David Rowlands wrote:

> However, I now want to have masquerading running for all IP's in the subnet
> but 3. Using DENY won't do, since those machines still need access to the
> box doing masquerading, I just don't want their packets masqueraded. I can't
> work out a way to use the ! (invert) work either for 3 addresses.

Assuming you're appending to the 'forward' chain, I can't see why you
couldn't use DENY. It doesn't stop the machine from accepting
connections from those IPs, but stops it from masquerading those IPs.

Or did I miss something huge and obvious?

   - andrew

-- 
Andrew Reid                   email: andrew.reid@plug.cx
                              www:   http://www.plug.cx
"A school without students    phone: +61 401 946 813
 is like an ointment
 without a fly"

-- 
LinuxSA WWW: http://www.linuxsa.org.au/  IRC: #linuxsa on irc.linux.org.au
To unsubscribe from the LinuxSA list:
  mail linuxsa-request@linuxsa.org.au with "unsubscribe" as the subject

Index: [thread] [date] [subject] [author] [stats]

Return to the LinuxSA Mailing List Information Page