On 02/24/2019 11:10 PM, Andrei Borzenkov wrote:
$ echo 1 > /proc/sys/net/ipv4/ip_forward Routing should have already been enabled in your case, you are already using this system as router.
$ iptables -t nat -A PREROUTING -d 111.222.333.11 -i eth1 -j DNAT --to-destination 192.168.10.10 $ iptables -t nat -A POSTROUTING -s 192.168.10.10 -o eth0 -j SNAT --to-source 111.222.333.11
Yes.
If he has a block of addresses that are sufficient for his needs, why NAT? Depending on what he gets from the ISP, it may require routing, but he'll also want appropriate filtering. IPTables is perfectly capable of handling a block of addresses, without using NAT. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org