Hi Justin, Thanks for the reply. I checked with netmap, with what I want to achieve, would this be the correct config for netmap? And also just for confirming, I want traffic incoming to 10.70.66.0/24 to be sent to 192.168.129.195 and traffic leaving 192.168.129.195 to be sent with source IP in 10.70.66.0/24
DNAT 10.70.66.0/24 eth1 192.168.129.195/32 SNAT 192.168.129.195/32 eth1 10.70.66.0/24 Couple of questions, - Do I just need to create the netmap file in /etc/shorewall and restart? - Does the fact that I am using /24 for the NATed subnet make sense? How does netmap allocate a /32 from that /24 when its being rewritten? Should I go with /32s on both sides? On 8 Jun 2022, at 16:53, Justin Pryzby <pry...@telsasoft.com> wrote: I don't know why you lost access to internal resources, but it may be important to understand that. It seems like your NAT rule applied when it shouldn't have. The usual way to deal with overlapping subnets is netmap. https://shorewall.org/netmap.html -- Justin _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
_______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
