Re: [Comm] Re: dial-in troubles... again!

ALT Linux Community general discussions
 help / color / mirror / Atom feed

From: "Sergey V. Golovin" <svgol@samkon.ru>
To: community@altlinux.ru
Subject: Re: [Comm] Re: dial-in troubles... again!
Date: Fri, 10 Jan 2003 09:54:49 +0400
Message-ID: <20030110055449.GB2915@sysadm.service.samkon.ru> (raw)
In-Reply-To: <20030109233049.GC77533@osdn.org.ua>

On 10 Jan Fri  1:30, Michael Shigorin wrote:
> On Sat, Jan 04, 2003 at 03:41:34PM +0400, Sergey V. Golovin wrote:
> > А дальше надо настроить NAT, например, так
> > iptables -t nat -A POSTROUTING -j SNAT --to-source 10.10.4.90
> > -s <здесь адрес удал. машины>
> 
> Во-первых, куда удаленной?  Рутера.  Внешний.

Например дом->сетка на работе->интернет
Т.е. нужно с домашней(удаленной) в интер(интра)нет

> Во-вторых, в данной ситуации проще -j MASQUERADE.

не проще
from man iptables:

 MASQUERADE
       This target is  only  valid  in  the  nat  table,  in  the
       POSTROUTING  chain. 
----------------------(sic!)----------------------------------------
       			  It  should only be used with dynami-
       cally assigned IP (dialup)  connections:  if  you  have  a
       static  IP  address, you should use the SNAT target. 
----------------------(/sic!)---------------------------------------
							 Mas-
       querading is equivalent to specifying a mapping to the  IP
       address of the interface the packet is going out, but also
       has the effect that connections  are  forgotten  when  the
       interface  goes  down.   This is the correct behavior when
       the next dialup is unlikely to  have  the  same  interface
       address  (and  hence  any established connections are lost
       anyway).

Впрочем, всегда можно поизвращаться ;-)

> В-третьих, всегда есть
> http://google.com/search?q=rusty+three+line+guide+masquerading
> :-)


-- 
Sergey V. Golovin

next prev parent reply	other threads:[~2003-01-10  5:54 UTC|newest]

Thread overview: 41+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2002-12-27  3:03 [Comm] " Evgeny Yugov
2002-12-27  4:39 ` Igor Solovyov
2002-12-27  8:15   ` Re[2]: " Evgeny Yugov
2002-12-27  8:26     ` Sergey V. Golovin
2002-12-27  8:59       ` Re[2]: " Evgeny Yugov
2002-12-27 12:38         ` Sergey V. Golovin
2002-12-28  5:41     ` Re[2]: " Igor Solovyov
2003-01-04  9:03       ` Re[4]: " Evgeny Yugov
2003-01-04 11:41         ` Sergey V. Golovin
2003-01-04 12:12           ` Re[2]: " Evgeny Yugov
2003-01-04 13:18             ` Sergey V. Golovin
2003-01-09 23:30           ` [Comm] " Michael Shigorin
2003-01-10  5:54             ` Sergey V. Golovin [this message]
2003-01-10  7:36               ` Michael Shigorin
2003-01-10  8:19                 ` Evgeny Yugov
2003-01-10  9:30                   ` Sergey V. Golovin
2003-01-10 10:51                     ` Re[2]: " Evgeny Yugov
2003-01-10 16:41                       ` Michael Shigorin
2003-01-11 10:03                         ` Evgeny Yugov
2003-01-13  3:33                         ` [Comm] [Comm][JT] Мдее Evgeny Yugov
2003-01-10 17:44                       ` [Comm] Re: dial-in troubles... again! Sergey V. Golovin
2003-01-11  9:57                         ` Re[2]: " Evgeny Yugov
2003-01-11 20:55                           ` Sergey V. Golovin
2003-01-13  3:03                             ` Re[2]: " Evgeny Yugov
2003-01-13  4:56                               ` Sergey V. Golovin
2003-01-13  5:50                                 ` Re[2]: " Evgeny Yugov
2003-01-13  6:17                                   ` Sergey V. Golovin
2003-01-13  7:25                                     ` Re[2]: " Evgeny Yugov
2003-01-13  8:57                                       ` Sergey V. Golovin
2003-01-13  9:47                                         ` Re[2]: " Evgeny Yugov
2003-01-15 17:01                                           ` Sergey V. Golovin
2003-01-16  3:37                                             ` Re[2]: " Evgeny Yugov
2003-01-10  9:26                 ` Sergey V. Golovin
2003-01-10  9:38                   ` Re[2]: " Evgeny Yugov
2003-01-10 10:15                     ` Sergey V. Golovin
2003-01-10  8:50               ` Борис Ревякин
2002-12-27  6:04 ` [Comm] " Oleg Lukashin
2002-12-27  8:17   ` Re[2]: " Evgeny Yugov
2002-12-27 14:19 ` Andy Gorev
2003-01-04  9:04   ` Re[2]: " Evgeny Yugov
2003-01-04 15:08     ` Oleg Lukashin

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20030110055449.GB2915@sysadm.service.samkon.ru \
    --to=svgol@samkon.ru \
    --cc=community@altlinux.ru \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

ALT Linux Community general discussions

This inbox may be cloned and mirrored by anyone:

	git clone --mirror http://lore.altlinux.org/community/0 community/git/0.git

	# If you have public-inbox 1.1+ installed, you may
	# initialize and index your mirror using the following commands:
	public-inbox-init -V2 community community/ http://lore.altlinux.org/community \
		mandrake-russian@linuxteam.iplabs.ru community@lists.altlinux.org community@lists.altlinux.ru community@lists.altlinux.com
	public-inbox-index community

Example config snippet for mirrors.
Newsgroup available over NNTP:
	nntp://lore.altlinux.org/org.altlinux.lists.community


AGPL code for this site: git clone https://public-inbox.org/public-inbox.git