Iptables NAT specific source IPs..

Hi,

I have a linux router, that I'm trying to use as follows:

I have a /29 subnet, and I want the clients on the internal network that
have public IPs (assigned manually) to be able to browse, with no NAT.

I also want to add some clients that have private 192.168.x.x IPs, and I'd
like those to be NATed, and have their IPs assigned via DHCP.

Assigning the DHCP IPs should be easy enough, but what I want to do, is
only NAT IPs coming from either a specific interface (eth0:1 etc) or, from
a specific ip range.
Is this possible?

Thanks,
Ben
--
BWGames
to email change de.news to de-news

"BWGames" <(E-Mail Removed)> wrote in message
news:(E-Mail Removed)...

> Assigning the DHCP IPs should be easy enough, but what I want to do, is
> only NAT IPs coming from either a specific interface (eth0:1 etc) or, from
> a specific ip range.
> Is this possible?

You should definitely make the decision to NAT or not based on the
source and destination addresses. If the source is in the private range
you've assigned, and the destination is not local, then you should NAT.

And of the various guides will do. Search for 'Masquerading' in this
guide:
http://www.siliconvalleyccie.com/lin...bles-intro.htm

DS

BWGames wrote:

> Assigning the DHCP IPs should be easy enough, but what I want to do, is
> only NAT IPs coming from either a specific interface (eth0:1 etc) or, from
> a specific ip range.
> Is this possible?

Yes, you can configure IPTables to filter on IP address or interface.