+ Post New Thread
Page 2 of 2 FirstFirst 12
Results 16 to 24 of 24
*nix Thread, Setting up NAT using IPTABLES in Technical; alrighty then. that explains it. Your using the wrong set of configuration files. You need the bridge configuration. http://www.shorewall.net/bridge.html...
  1. #16

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,804
    Thank Post
    110
    Thanked 583 Times in 504 Posts
    Blog Entries
    1
    Rep Power
    224

    Re: Setting up NAT using IPTABLES

    alrighty then. that explains it. Your using the wrong set of configuration files. You need the bridge configuration.

    http://www.shorewall.net/bridge.html

  2. #17
    ChrisH's Avatar
    Join Date
    Jun 2005
    Location
    East Lancs
    Posts
    5,009
    Thank Post
    120
    Thanked 282 Times in 260 Posts
    Rep Power
    108

    Re: Setting up NAT using IPTABLES

    Ah that will be why ops: I think the terminology my old censornet install threw me off though as the bridge configuration just uses one interface. I shall check it out cheers.

  3. #18
    ChrisH's Avatar
    Join Date
    Jun 2005
    Location
    East Lancs
    Posts
    5,009
    Thank Post
    120
    Thanked 282 Times in 260 Posts
    Rep Power
    108

    Re: Setting up NAT using IPTABLES

    The example on that page indicates that the router and the main network are on the same subnet. Is that just a bad example? All my computers and servers are on a 192.168.0.0/23 range and the CLEO router is on the 10.x.x.x range. At the moment my Censornet box routes between the two.

  4. #19

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,804
    Thank Post
    110
    Thanked 583 Times in 504 Posts
    Blog Entries
    1
    Rep Power
    224

    Re: Setting up NAT using IPTABLES

    no thats how a bridge works. Why aren't you using your assigned IP range on your network?

  5. #20
    ChrisH's Avatar
    Join Date
    Jun 2005
    Location
    East Lancs
    Posts
    5,009
    Thank Post
    120
    Thanked 282 Times in 260 Posts
    Rep Power
    108

    Re: Setting up NAT using IPTABLES

    It allows me more flexibility on the IP address assignment and allows me to vlan the connection to the router so the only way to the router is through my proxy.
    So given that I still need a bridge with 2 IP Ranges?

    Ps transparent proxy wasnt an option when I set it all up.

  6. #21

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,804
    Thank Post
    110
    Thanked 583 Times in 504 Posts
    Blog Entries
    1
    Rep Power
    224

    Re: Setting up NAT using IPTABLES

    You can transparent proxy with a bridge (even on the same box if you like). The bridge can deny direct access to the router (or anything else the other side of the bridge) on a per ip/mac/port basis. VLANing the connection is a waste of a perfectly good vlan.

  7. #22
    ChrisH's Avatar
    Join Date
    Jun 2005
    Location
    East Lancs
    Posts
    5,009
    Thank Post
    120
    Thanked 282 Times in 260 Posts
    Rep Power
    108

    Re: Setting up NAT using IPTABLES

    I wont be changing the addressing scheme as it would be a big task and I like it how it is.
    So from what Im seeing here its not a bridge I need? as I have 2 seperate ranges? I know for a fact my censornet box is acting like a router.
    Right Im going to go and do something else before my head explodes .

    Edit Ok just found a network diagram with 2 IP ranges which has settled me a bit. The one on the public side is used for administration and isnt really used.
    /Me heads off to Wikipedia....

  8. #23

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,804
    Thank Post
    110
    Thanked 583 Times in 504 Posts
    Blog Entries
    1
    Rep Power
    224

    Re: Setting up NAT using IPTABLES

    yes. you need to go back to the 2 interface example. Because both your IP ranges are rfc1918 compliant though you should remove the 'norfc1918' option from the external interface's entry in /etc/shorewall/interfaces.

  9. #24
    ChrisH's Avatar
    Join Date
    Jun 2005
    Location
    East Lancs
    Posts
    5,009
    Thank Post
    120
    Thanked 282 Times in 260 Posts
    Rep Power
    108

    Re: Setting up NAT using IPTABLES

    Ok thank you I can feel the pressure in my head beginning to settle

SHARE:
+ Post New Thread
Page 2 of 2 FirstFirst 12

Similar Threads

  1. iptables multiple ports
    By Jackd in forum *nix
    Replies: 1
    Last Post: 23rd December 2007, 10:19 PM
  2. Proxy setting GPO
    By LOUD in forum Wireless Networks
    Replies: 1
    Last Post: 11th December 2007, 08:35 AM
  3. Setting Up New Server and New Domain
    By Zoom7000 in forum Windows
    Replies: 14
    Last Post: 2nd June 2007, 08:16 PM
  4. Setting up a new network
    By wesleyw in forum How do you do....it?
    Replies: 16
    Last Post: 12th March 2007, 09:57 AM
  5. AB Tutor setting
    By eastlondon in forum Windows
    Replies: 0
    Last Post: 29th September 2006, 11:46 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •