Re: SNAT or MASQUERADE?

To: debian-firewall@lists.debian.org
Subject: Re: SNAT or MASQUERADE?
From: mdevin@ozemail.com.au
Date: Sun, 2 Dec 2001 15:57:31 +1000
Message-id: <[🔎] 20011202155731.E13870@beast.home>
Mail-followup-to: debian-firewall@lists.debian.org
In-reply-to: <[🔎] 20011202151816.B13870@beast.home>; from mdevin@ozemail.com.au on Sun, Dec 02, 2001 at 03:18:16PM +1000
References: <[🔎] 20011202113620.D12186@beast.home> <[🔎] 20011201210234.43f3584a.dbarclay10@yahoo.ca> <[🔎] 20011202151816.B13870@beast.home>

I just realised something.  With the SNAT and MASQUERADE stuff, only the
first packet of a connection needs to be looked up.  After that all
subsequent packets are given the same treatment.

Thus it really matters little I guess.  Only the first packet would be
minisculely delayed by the extra time required to look up the current IP
address of the interface.

Hmmmm.

Cheers.
Mark.

Attachment: pgpFnRE8TPUO5.pgp
Description: PGP signature

Reply to:

Follow-Ups:
- Re: SNAT or MASQUERADE?
  - From: mdevin@ozemail.com.au

References:
- SNAT or MASQUERADE?
  - From: mdevin@ozemail.com.au
- Re: SNAT or MASQUERADE?
  - From: David B Harris <dbarclay10@yahoo.ca>
- Re: SNAT or MASQUERADE?
  - From: mdevin@ozemail.com.au

Prev by Date: Re: SNAT or MASQUERADE?
Next by Date: Re: SNAT or MASQUERADE?
Previous by thread: Re: SNAT or MASQUERADE?
Next by thread: Re: SNAT or MASQUERADE?
Index(es):
- Date
- Thread