This is part of The Pile, a partial archive of some open source mailing lists and newsgroups.
Date: Tue, 31 Oct 2000 22:12:54 -0800
To: svlug@svlug.org
From: Ray Olszewski <ray@comarre.com>
Subject: Re: [svlug] NAT technology
I'm not quite sure what Alan was after in asking about this, but there's a
bit more to NAT under Linux (even Linux 2.2.x) than what you mention. In
addition to the capabilities provided by ipchains, there are:
ipmasqadm, used to port forward services from external
ports on the NAT'ing router to ports on MASQ'd
servers
iproute (the actual application name is just "ip"), which
provides more flexible access to the kernel's
routing capabilities than the older "route"
command. In particular, it provides access to
the policy routing features, which allow for a lot
finer control over NAT, including the ability
to "static NAT" individual private addresses to
specific public addresses (as distinct from the
"shared NAT" method used in IP MASQ, where many
private addresses share one public address).
But I don't know of any integrated tool GUI or otherwise, that conveniently
accesses all of these capabilities from a single, friendly interface. There
are, as you imply, some pretty clever scripts around, though.
At 08:47 PM 10/31/00 -0800, J C Lawrence wrote:
>Alan Dickie <fassto@hotmail.com> wrote:
>
>> I was wondering how far the nat technology for linux has gone.
>
>Well, it works. Is there much more to ask than that?
...
>> What are some well known programs to admin. the routing and are
>> there any other solutions?
>
>ipchains
>
>I haven't looked at the new NetFilter stuff in 2.4 yet.
--
------------------------------------"Never tell me the odds!"---
Ray Olszewski -- Han Solo
Palo Alto, CA ray@comarre.com
----------------------------------------------------------------
===
Date: Tue, 31 Oct 2000 22:31:49 -0800
To: svlug@svlug.org
Subject: Re: [svlug] NAT technology
From: Rick Moen <rick@linuxmafia.com>
begin Alan Dickie quotation:
> Has NAT gone gui yet?
Mu.
--
Cheers, "Teach a man to make fire, and he will be warm
Rick Moen for a day. Set a man on fire, and he will be warm
rick@linuxmafia.com for the rest of his life." -- John A. Hrastar
===