Re: iptables question

To: deloptes@gmail.com
Cc: debian-user@lists.debian.org
Subject: Re: iptables question
From: Henning <henning@itcfollmann.com>
Date: Sun, 13 Nov 2016 16:27:31 -0500
Message-id: <[🔎] 04873AA1-F707-4CB0-98D4-627B71A98D8A@itcfollmann.com>
In-reply-to: <[🔎] o0aj9h$5c1$1@blaine.gmane.org>
References: <[🔎] o080pt$ok8$1@blaine.gmane.org> <[🔎] 20161112223216.2c7cf605@jresid.jretrading.com> <[🔎] o08bim$b11$1@blaine.gmane.org> <[🔎] 31009623-6fd0-6806-9d15-ae34c4e6cc66@gmail.com> <[🔎] o09vg1$r8r$1@blaine.gmane.org> <[🔎] 9648db85-21b9-aab6-2f87-387f1144bb68@plouf.fr.eu.org> <[🔎] o0afiq$jnb$1@blaine.gmane.org> <[🔎] 40915ee4-fd6d-9a72-8a4c-c90b91da3781@plouf.fr.eu.org> <[🔎] o0aj9h$5c1$1@blaine.gmane.org>

I followed this thread and i wonder if there is a sane reason why you do nat inside your network. Why don't you just route between different subnets i.e.  10.0.1.0/24 and 10.0.2.0/24
you still can have a firewall between those subnets

-H

Reply to:

Follow-Ups:
- Re: iptables question
  - From: Pascal Hambourg <pascal@plouf.fr.eu.org>

References:
- iptables question
  - From: deloptes <deloptes@gmail.com>
- Re: iptables question
  - From: Joe <joe@jretrading.com>
- Re: iptables question
  - From: deloptes <deloptes@gmail.com>
- Re: iptables question
  - From: Michael Milliman <michael.e.milliman@gmail.com>
- Re: iptables question
  - From: deloptes <deloptes@gmail.com>
- Re: iptables question
  - From: Pascal Hambourg <pascal@plouf.fr.eu.org>
- Re: iptables question
  - From: deloptes <deloptes@gmail.com>
- Re: iptables question
  - From: Pascal Hambourg <pascal@plouf.fr.eu.org>
- Re: iptables question
  - From: deloptes <deloptes@gmail.com>

Prev by Date: Re: install recommended by default? (was: Gparted will not label...)
Next by Date: Re: iptables question
Previous by thread: Re: iptables question
Next by thread: Re: iptables question
Index(es):
- Date
- Thread