As has been mentioned by a few, masquerading (N computers to 1 IP) is by *no* means all that the the new linux NAT code can do. When I say NAT, I do not mean Cisco, or anyone other than the NAT defined in the Netfilter documentation on the Netfilter website. Look at : http://www.samba.org/~netfilter/ However, what I stated is fundamentally (albeit incomplete) correct. IP Masquerading ala ipfwadm, or IP Chains will be dropped in kernel version 2.4 (so I am told) for using the NAT module for masquerading. I apologize for the confusion. Steve On 29-Dec-99 Michael Hasenstein wrote:
On Wed, 29 Dec 1999, Steve Jardine wrote:
Not sure if this has been aswered yet: NAT is the new paradigm for IP Masquerading in the latest kernel (2.3.34>). It will be the replacement of IP Chains in the 2.4 kernel when it is released.
NAT is short for Network Address Translation. Currently it *only* works with 2.3 kernels. So the stock kernel for Suse will not work.
What you mean is called 'netfilter', which implements, among other things, a framework for NAT, where misc. NAT modules (n:1 translation is widely known as 'masquerading') can be plugged in.
Netfilter is _not_ just a replacement for the masquerading code, and it is a framework for many things, not just NAT.
-- Michael Hasenstein http://www.suse.de/~mha/ Private Pilot (ASEL) since 1998
-- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/
Clarity is pleasurable. Linux ID: 24951 -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/