From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.62) (envelope-from ) id 1HCvD3-00002c-Bm for garchives@archives.gentoo.org; Fri, 02 Feb 2007 09:59:58 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.8/8.13.8) with SMTP id l129wpvf012503; Fri, 2 Feb 2007 09:58:51 GMT Received: from gabriel.sub.uni-goettingen.de (gabriel.sub.uni-goettingen.de [134.76.163.126]) by robin.gentoo.org (8.13.8/8.13.8) with ESMTP id l129ssNC007966 for ; Fri, 2 Feb 2007 09:54:55 GMT Received: by gabriel.sub.uni-goettingen.de (Postfix, from userid 8) id CF4E9B7D3A; Fri, 2 Feb 2007 10:54:53 +0100 (CET) Received: from localhost (unknown [134.76.161.221]) by gabriel.sub.uni-goettingen.de (Postfix) with ESMTP id C703275F35 for ; Fri, 2 Feb 2007 10:54:52 +0100 (CET) Date: Fri, 2 Feb 2007 10:54:52 +0100 From: Hans-Werner Hilse To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] IPtables question Message-Id: <20070202105452.73819bf8.hilse@web.de> In-Reply-To: <200702020945.53267.Gentoo@kraszewscy.net> References: <200702020945.53267.Gentoo@kraszewscy.net> X-Mailer: Sylpheed 2.3.1 (GTK+ 2.10.9; i586-pc-linux-gnu) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org Mime-Version: 1.0 Content-Type: text/plain; charset=UTF-8 X-Spam-Details: No, hits=0.0 required=5.0 tests=AWL autolearn=ham version=2.64 X-Spam-Checker-Version: SpamAssassin 2.64 (2004-01-11) on gabriel.sub.uni-goettingen.de Content-Transfer-Encoding: quoted-printable X-MIME-Autoconverted: from 8bit to quoted-printable by robin.gentoo.org id l129wpvs012503 X-Archives-Salt: d6d7a5a5-2e1f-459a-81cf-fd6d323c264a X-Archives-Hash: 2e9d3ea933d74fef8d1aa5855ca67c15 Hi, On Fri, 2 Feb 2007 09:45:53 +0100 Pawel Kraszewski wrote: > Dnia =C5=9Broda, 31 stycznia 2007, James Colby napisa=C5=82: >=20 > > I have a small home server that I have connected to the internet > > through a linksys router and cable modem. The linksys router is > > currently forwarding all ssh traffic to my gentoo box. What I would > ^^^^^^^^^ >=20 > Take note, that forwarded traffic (it is DNAT-ed in Linksys) would > appear on your host as originating from your router. Original source > address is stripped by router's NAT. Nope, just the target Adress is rewritten (by routing). DNAT is Destination NAT! I.e. the target IP of the packet is rewritten. Since the Linksys is the default gateway, packets can keep their source IP address. Of course, the source MAC address will be rewritten to the router's -- but that's got nothing to do with NAT but routing instead. -hwh --=20 gentoo-user@gentoo.org mailing list