forcing outbound address/interface?

05-18-2005, 06:01 PM

i have a linux nat firewall that does SNAT with iptables for an
internal smtp server (only sends outgoing mail). the nat fw has
multiple public ip's, how can i set all outgoing smtp traffic to use a
specific address? all the public ip's use the same gateway. im afraid
mangling the source address will mess up the SNATing.

thanks.

05-21-2005, 08:51 AM

(E-Mail Removed) <(E-Mail Removed)> wrote:

> i have a linux nat firewall that does SNAT with iptables for an
> internal smtp server (only sends outgoing mail). the nat fw has
> multiple public ip's, how can i set all outgoing smtp traffic to use a
> specific address? all the public ip's use the same gateway. im afraid
> mangling the source address will mess up the SNATing.

Hm, I don't understand. If you do SNAT, then you are
already mangling the source address. So if you do

iptables -t nat -A POSTROUTING -p tcp --dport smtp \
-j SNAT --to-source <public smtp ip>

you change the source IP of the outgoing smptp traffic to
<public smtp ip>.

Ciao, Horst
--
»When pings go wrong (It hurts me too)« E.Clapton/E.James/P.Tscharn

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Command for assigning IPv6 address and MAC address on the interface	iceman	Linux Networking	7	03-03-2008 07:51 PM
Redirecting outbound URL requests to LAN address before DNS lookup???	Shannon	Network Routers	3	01-12-2008 02:54 AM
Is there any way of forcing it to Acquire Network Address?	Tristán White	Wireless Internet	67	11-26-2005 08:42 PM
Forcing a particular IP address out to an interface	nick4soup@yahoo.com.au	Linux Networking	4	10-12-2005 10:44 PM
Getting the name of the outbound interface	Grant H.	Linux Networking	0	04-21-2004 06:08 AM