Sorry about messing up the title in the repost I did

>>
>> When I did run out of pinholes I was wondering if I could use the port range

>> pin-hole to pass on the whole 1-1023 privileged port range requests direct
to
>> a Linux masquerading router:
>>
>> 210.55.x.x [M10] 192.168.1.254
>> -crossover-
>> 192.168.1.1 [Linux NAT/Masq] 192.168.2.1 -hub- others.

First off, I don't think you want a cross over cable here. Just a normal cable
will do. That's what I'm using. And I'm doing NAT.

>>
>> Would that work? I've never played with, nor understood, the port range
function,
>> does it map many-to-one or many-to-many in a one-for-one way?
>>
>
>In theory this should work - you should be able to do many to many. One can
only
>try of course :)
>the downside is that 2 sets of nat will add latency to the packet

Off hand, I don't think it would work. Or perhaps someone could explain to
me how it would work.

The pinholes, from memory, are Lower-Port, Upper-Port, IP Address, Port. So
you are mapping several ports to a *single* port. How does the box know what
protocol you are using? How does it distinguish telent (port 23) from ssh (port
22) from mail (port 25)?
-
Dan Langille

To unsubscribe: send mail to majordomo@freebsddiary.cx
with "unsubscribe adsl" in the body of the message
Received on Thu Jul 1 15:34:42 1999