Re: [m0n0wall] Static Routes? Outbound NAT? What am I doing wrong?

From:	"Kurt Hadeler" <khadeler at wppl dot lib dot ny dot us>
To:	<m0n0wall at lists dot m0n0 dot ch>
Subject:	Re: [m0n0wall] Static Routes? Outbound NAT? What am I doing wrong?
Date:	Fri, 01 Jul 2005 12:19:01 -0400

Peter,

Thank you for your suggestions, they did the trick.  I removed the
static routes entirely and edited the config.xml to change the WAN
interface to LAN and everything was working after that.

FWIW, is there any thought of adding selections for LAN to the NAT
rules?  Changing the advanced NAT rules was essential to getting
m0n0wall working, and changing an inbound NAT rule also helped with
another issue.

Best regards,
Kurt
 

>No extra routing entries.
>
>Your problem is, that you want a n:1-NAT on the LAN Interface:
>
>INT     SOURCE           DEST                TARGET
>LAN     192.168.1.0/24   10.1.1.0/24         10.1.1.27
>
>This isn't possible with m0n0 (not out of the box). There are several
>possible solutions:
>
>     1. Use VLANs on the LAN interface. You can choose NAT for VLANs.
>     2. Choose WAN as the interface and change it by hand in the
>        config.xml.
>     3. Change the internal net mask to /23 and configure 1:1 NAT for
>        the OPT1 subnet.
>     4. Don't use NAT at all for the OPT1 subnet. Instead configure
all
 >       hosts in the LAN subnet to use your m0n0wall as default gw.