|
Firewalld MAquerade SNAT static for DMZ
I switched from iptables to firewalld
Network lan dmz 192.168.1.0/24 interface ens36
POOL ISP Network wan 200.20.135.0/28 gw 200.20/135.14 interface ens35
WEBSERVER_DMZ 192.168.1.2/24 <-->200.20.135.2
FTPSERVER_DMZ 192.168.1.3/24 <-->200.20.135.3
IPTABLES I used
iptables -t nat -A POSTROUTING -o ens35 -s 192.168.1.2 -j SNAT --to 200.20.135.2
FIREWALLD: HOW To EXECUTEwith SNAT for one specific IP public!
firewall-cmd --zone=external --add-masquerade --permanent
firewall-cmd --permanent --zone=external --add-rich-rule="rule family=ipv4 source address=192.168.1.0/24 masquerade"
|
