At least as soon as I figure this out. I've managed to get my 2.2.somethingorother linux box to NAT the boxes behind it so they can all get out to the 'net. Which is a nice thing, as web proxies only go so far. Now, though, I've got another issue to deal with, and that's allowing machines behind the NAT to act as servers to systems elsewhere on the intarnet.
I'm assuming that the way to do this is to take an unused port on the linux box and transparently gateway it to the SSH port on the machines behind it, but I'm not sure how exactly to do that and maintain all the appropriate links and whatnot. I'm sure there's some simple ipchains voodoo to do this, but beats me what it is.
Posted by Dan at August 20, 2003 03:29 PM | TrackBack (0)On kernels before 2.4 you need to follow these instructions: http://www.tldp.org/HOWTO/IP-Masquerade-HOWTO/forwarders.html
Posted by: Michael at August 20, 2003 11:38 PMI've decided on Plan B -- completely replace the gateway server with something built this millenium, with brand new software, and see where we go from there. :)
Posted by: Dan at September 3, 2003 02:21 PM