SNAT from localhost with 2 gateways?
My firewall box has an ADSL modem hooked up to it with a so called SIP
external nic (eth1) has been manually configured to use my external IP,
with the ADSL
modem set up as a gateway.
I've blocked all inbound traffic since I run no services, but do allow
the internal net to the internet, which are SNAT'ed. However I would
like to run one
program from the local box which requires internet, so I figured I'd
connection from the localhost as well. That way I will not have to open
up ports to
and from the localhost, because all the necessary traffic is SNAT'ed.
Is this line of thought correct?
If so, then my problem is quite simple. I've already set a standard
gateway, as that is
necessary for the SIP spoof to work. If I change the default gw the SIP
work but if I don't my internal connections won't get SNAT'ed.
Once again, I hope this is not something I missed and could've been
RTFM ;) Of so, just pointing me in the direction will be just as much