[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ipfilter
Subject:    Re: nat behind a non external interface
From:       "Art" <arti () elart ! com ! pl>
Date:       2002-10-24 15:36:55
[Download RAW message or body]

>Hi, that does not seem to work.  Actually, in this case I think I need 
>bimap and not RDR as the host needs to make outbound connections from the 
>DMZ as well as accept inbound as well.
>
>If I dont alias an interface, the host just throws the packet back out its 
>default gateway as it does not know what to do with it.

Make a proxy for arp by publishing mac address for this ip
for BSD do 
arp -s ip-address mac-address pub
this tells your router :
send packet for wanted IP to MAC of netcard
IPF will do the rest

Art

[prev in list] [next in list] [prev in thread] [next in thread]