www.zeroshell.org Forum Index www.zeroshell.org
Linux Distribution for server and embedded devices
 
 SearchSearch  RegisterRegister  UsergroupsUsergroups 
 ProfileProfile  Log inLog in  Log in to check your private messagesPrivate Message 

Outbound NAT question

 
Post new topic   Reply to topic    www.zeroshell.org Forum Index -> ZeroShell
View previous topic :: View next topic  
Author Message
cdpearce



Joined: 27 Jan 2012
Posts: 22

PostPosted: Thu Aug 10, 2017 9:54 am    Post subject: Outbound NAT question Reply with quote

I have more than one static IP address on the subnet provided to me by my ISP. So these are defined as IP addresses on the ZS interface connected to the ISP. I use the Virtual Server feature on the router tab to do port-forwarding for specific ports to specific servers on the internal NAT subnet.

This all works fine.

One specific IP address on the external network is defined as the gateway/default route for all outbound packets to the internet. But, I would like packets from an internal server that has inbound traffic coming in on a particular external IP address via port forwarding to use that same IP address for originating outbound traffic as well. Since I don't know in advance what the destination would be I would have to rely on a default route to carry the packet out. But, I don't want this to be the normal default route that sends the packet out from the "wrong" external IP address.

So, how do I do this?

Thanks in advance.
Back to top
View user's profile Send private message
Montikore



Joined: 19 Jan 2016
Posts: 31

PostPosted: Thu Aug 10, 2017 1:02 pm    Post subject: Reply with quote

You should use the Net Balancer feature, with the Balancing rules you will be able to achieve what you want.
Back to top
View user's profile Send private message
cdpearce



Joined: 27 Jan 2012
Posts: 22

PostPosted: Thu Aug 10, 2017 10:56 pm    Post subject: Reply with quote

I am not currently using the Net Balancer, and therefore not familiar with configuring it. But, I am familiar with the idea of connecting more than one ISP where each would have a gateway address that was on the ISP side of the interface connected to that ISP. That is not the situation here.

There is just one ISP and one "gateway" address on the ISP side of the interface. I have multiple IP addresses on my side of the interface. But, my IP addresses cannot be gateway addresses. If I add one of those addresses as a gateway address in the Net Balancer it immediately goes into the Fault state because I have created a route to the edge of my device, but not to the ISP.

I'm obviously missing something.

What I need is to modify the NAT translation process, so that packets destined from a particular internal device to the outside get a NAT translation showing a different edge address as the "source" of the outbound packet from the perspective of the internet.
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   Reply to topic    www.zeroshell.org Forum Index -> ZeroShell All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum


Powered by phpBB © 2001, 2005 phpBB Group