|
Ruben Laban a écrit :
> On Wednesday 06 February 2008, Greg wrote:
>
>> Please re-read man page, "In Kernels up to 2.6.10, you can add several
>> --to-source", in newer kernels you can't.
>>
>
> That's what exactly what I said.
>
Oops sorry, I read to fast!
> That's why I said if its a nice (perhaps I should have said: single) range,
> it
> would work.
>
I tried with a single range, and ping an "internet server", which always
see the 3rd IP ... buggy.
> To work around that, I'd just would not use a nth based rule for the 3rd SNAT
> rule. Just make that SNAT rule the default for packets not matching the other
> 2 (or even more) rules.
>
How? If I set a default SNAT rule, this default is always used ...
Regards,
--
Greg
|
