Welcome, Guest. Please login or register.
Did you miss your activation email?
Thursday 19 December 2024, 09:35:43 am

Login with username, password and session length

The Latest Endian Firewall is now available for download HERE
14262 Posts in 4377 Topics by 6517 Members
Latest Member: Sandro
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  VPN Support
| | |-+  Source NAT
0 Members and 0 Guests are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: Source NAT  (Read 19111 times)
mmiat
Sr. Member
****
Offline Offline

Gender: Male
Posts: 236


WWW
« on: Friday 20 September 2013, 03:16:23 am »

Hi

I've configured an ipsec vpn between me and a customer (so I don't have access to his gateway)

my lan is 192.168.10.0/24, his is 10.128.0.0/12. however, he told me to source nat my ip addresses to 10.143.144.0/29

but when I try to configure it in EFW, it tells me that source netmask and mapped netmask have to be same length. How I have to do / fix it?

Thanks
Logged

---------------------
IT Consultant
www.fsw.it
Hardware & Software
mmiat
Sr. Member
****
Offline Offline

Gender: Male
Posts: 236


WWW
« Reply #1 on: Sunday 06 April 2014, 08:25:59 pm »

solved
using shell this rule works:

Quote
iptables -t nat -I SOURCENAT 1 -j NETMAP -p tcp -s 192.168.10.0/24 -d 10.128.0.0/12 --to 10.143.144.113/32

this time endian sucks, linux rulez Wink

now I have to find how to start this rule when system boot or endian web interface change something
Logged

---------------------
IT Consultant
www.fsw.it
Hardware & Software
Pages: [1] Go Up Print 
« previous next »
Jump to:  

Page created in 0.125 seconds with 19 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com