[Openswan Users] configuration question
Rolf Offermanns
roffermanns at sysgo.com
Mon Jan 31 09:16:01 CET 2005
On Sunday 30 January 2005 21:18, Mads Rasmussen wrote:
> Paul Wouters wrote:
> > On Sun, 30 Jan 2005, Mads Rasmussen wrote:
> >>> Exclude NAT for packets from 10/8 to/from 10/8.
> >
> > Also, these are in the input/output chain. I believe the SNAT happens
> > in the
> > FORWARD chain.
>
> Thanks!
>
> What if I used MASQUERADE instead of NAT? Would I have to
> "unmasquerade" packets from 10/8 to/from 10/8 as in NAT?
Yes, just exclude these networks from your masq rule.
-Rolf
--
Rolf Offermanns <roffermanns at sysgo.com>
SYSGO AG Tel.: +49-6136-9948-0
Am Pfaffenstein 14 Fax: +49-6136-9948-10
55270 Klein-Winternheim http://www.sysgo.com
More information about the Users
mailing list