Community discussions

MUM Europe 2020
 
jd6strings
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 73
Joined: Tue Dec 20, 2005 8:24 pm

SRCNAT MASQUERADE

Tue Nov 11, 2008 4:42 am

Hello:

I've got a situation that I can't seem to get right.

I've an EOIP tunnel setup between 2 locations and at one location I have multiple IP address on the SAME EOIP interface and I do DSTNAT to internal IP's on the network:
 10.112.2.145/18    10.112.0.0      10.112.63.255   eoip-tunnel1
10.112.2.146/18    10.112.0.0      10.112.63.255   eoip-tunnel1
10.112.2.148/18    10.112.0.0      10.112.63.255   eoip-tunnel1
10.112.2.149/18    10.112.0.0      10.112.63.255   eoip-tunnel1
I then have a SRCNAT rule that MASQUERADES traffic leaving the EOIP interface and that traffic is masquerading with the 10.112.2.145 IP:
chain=srcnat action=masquerade out-interface=eoip-tunnel1 src-address=192.168.1.5 
The problem is that the traffic originating from 192.168.1.5 MUST be masqueraded as coming from 10.112.2.148 rather than 10.112.2.145. Obviously MT is grabbing the first sequential IP on the EOIP interface. Is there ANY way to get around this?

Thanks my friends!
 
changeip
Forum Guru
Forum Guru
Posts: 3804
Joined: Fri May 28, 2004 5:22 pm

Re: SRCNAT MASQUERADE

Tue Nov 11, 2008 5:15 am

use src-nat instead of masquerade. then you can specify which IP you want to use. also, the additional 3 IPs should be /32 I believe.
Colo and Wholesale Bandwidth Available! Sales at SanDiegoBroadband dot com
 
jd6strings
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 73
Joined: Tue Dec 20, 2005 8:24 pm

Re: SRCNAT MASQUERADE

Tue Nov 11, 2008 5:54 am

Thank you! I had tunnel vision and not enough coffee. Also thanks for the bitmask catch.

Thanks again!!!

Who is online

Users browsing this forum: MSN [Bot] and 111 guests