On 02/24/2019 12:23 PM, Marc Chamberlin wrote:
ided me with easy to use tools like SuSEFirewall2 and YaST2 before ;-) So my Googling has come up with this representation of the commands I need to give, can you verify these for me? eth0 is my external facing NIC, eth1 is my internal facing NIC.
|$ echo 1 > /proc/sys/net/ipv4/ip_forward ||$ iptables -t nat -A PREROUTING -d ||111.222.333.11 -i eth1 -j DNAT --to-destination |192.168.10.10 |$ iptables -t nat -A POSTROUTING -s ||192.168.10.10 -o eth0 -j SNAT --to-source |111.222.333.11 ||
I stopped using SuSE Firewall almost 3 years ago, but back then I just used Yast to configure it. These days I'm using pfSense.
I believe this is what Andrie is calling NAT routing? James you seem to be saying there is another way to accomplish doing what I want without doing NAT, can you say more? I don't want to break anything on my system by experimenting around with stuff that I am not familiar with, so figured I better ask before I do anything.
There are two ways. One is to provide a transit network, which carries your subnet to your router. The other way is to make the addresses directly available, without additional routing. Either way, you'd set up the rules to pass or block as needed. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org