Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
 |
09-19-2013, 05:52 PM
|
#1
|
Senior Member
Registered: Apr 2003
Location: Costa Rica
Distribution: Kubuntu, Debian, Knoppix
Posts: 2,092
Rep:
|
masquerading on appliance with busybox without iptables
Hi!
I have this small appliance. We got openvpn running on it and now would like to get it to masquerade traffic from clients. iptables is not available so I can't tell it to masquerade traffic so I wanted to know what the options are available on a busybox-based box.
Thanks in advance.
|
|
|
09-21-2013, 04:21 AM
|
#2
|
LQ Guru
Registered: Jan 2006
Location: Ireland
Distribution: Slackware, Slarm64 & Android
Posts: 17,278
|
I would go hunting in /proc/sys/net/ and subdirectories to see if there is something you can echo 0 or 1 to. When you say masquerading, do you mean NAT? In that case, it's
echo 1 > /proc/sys/net/ipv4/ip_forwarding
I think. Others will no doubt correct me if I'm wrong.
|
|
|
09-21-2013, 10:12 AM
|
#3
|
Senior Member
Registered: Apr 2003
Location: Costa Rica
Distribution: Kubuntu, Debian, Knoppix
Posts: 2,092
Original Poster
Rep:
|
I can tell you about that. That flag does no natting. It only tells the kernel that it's ok to forward traffic that's intended for anothet host (and then netfiltet stuff applies if it's enabled)
|
|
|
09-21-2013, 10:20 AM
|
#4
|
Senior Member
Registered: Apr 2003
Location: Costa Rica
Distribution: Kubuntu, Debian, Knoppix
Posts: 2,092
Original Poster
Rep:
|
Natting is normally achived with a SNAT or MASQUERADE targnat table.et on POSTROUTING of netfilter's nat table. You do nothing like this on netfiltrr, traffic woll be forwarded with theor dource/destination addresses unchanged..... And if ypu want that traffic to be sent to internet using some kind of proxy for a private network, that's a 'ivate networko go'. You absolutelly must do some magic to get the proxy to 'switch' the src ip address of the traffic henerated from the pro fot its own publuc ip address so the traffic can come back to thst same host.
|
|
|
09-21-2013, 10:23 AM
|
#5
|
Senior Member
Registered: Apr 2003
Location: Costa Rica
Distribution: Kubuntu, Debian, Knoppix
Posts: 2,092
Original Poster
Rep:
|
So many mistakes...... Writing from a smartphone..... Sorry, hope you understand what I meant . 
|
|
|
All times are GMT -5. The time now is 05:36 PM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|