SNAT from localhost with 2 gateways?

To: debian-firewall@lists.debian.org
Subject: SNAT from localhost with 2 gateways?
From: Menno Scholten <m.scholten@planet.nl>
Date: Fri, 17 Oct 2003 00:15:11 +0200
Message-id: <[🔎] 3F8F186F.6000203@planet.nl>

L.S.

My firewall box has an ADSL modem hooked up to it with a so called SIPspoof. Myexternal nic (eth1) has been manually configured to use my external IP,with the ADSL

modem set up as a gateway.

I've blocked all inbound traffic since I run no services, but do allowconnections fromthe internal net to the internet, which are SNAT'ed. However I wouldlike to run oneprogram from the local box which requires internet, so I figured I'dSNAT thatconnection from the localhost as well. That way I will not have to openup ports to

and from the localhost, because all the necessary traffic is SNAT'ed.

Is this line of thought correct?

If so, then my problem is quite simple. I've already set a standardgateway, as that isnecessary for the SIP spoof to work. If I change the default gw the SIPspoof won't

work but if I don't my internal connections won't get SNAT'ed.

Once again, I hope this is not something I missed and could've beensolved byRTFM ;) Of so, just pointing me in the direction will be just as muchappreciated. =)


TIA,
-Menno

Reply to:

Prev by Date: Re: Bombed - Trying to Recover - Need Advice
Next by Date: firewall
Previous by thread: Re: Bombed - Trying to Recover - Need Advice
Next by thread: firewall
Index(es):
- Date
- Thread