[ previous ] [ next ] [ threads ]
 From:  Patrick Lidstone <patrick at lidstone dot net>
 To:  melvin at sleepydragon dot net
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] NAT based on source IP?
 Date:  Thu, 10 Sep 2009 10:19:13 +0100
2009/9/10 Melvin <melvin at sleepydragon dot net>

> Patrick Lidstone wrote:
>> I'm looking for a hand with m0n0 configuration, hopefully this is the
>> right
>> place to ask - if not apologies in advance!
>> I have a single static IP address with a single network behind the
>> firewall,
>> using NAT.
>> I need to route incoming requests on a fixed port to different servers
>> behind the firewall based on source IP. i.e.
>> I need to route incoming requests from a known source IP on port X to
>> server
>> A on port Y, and requests from any other IP address on port X to server B
>> on
>> port Y.
>> Whilst I can set up firewall rule to route by source IP (and port) to
>> server
>> A and server B, I can't find a way to set up the NAT rules so that they
>> are
>> applied on the basis of source IP.
>> Is what I am trying to do just "wrong" or otherwise impossible? Is there
>> any
>> other way of approaching the problem? The obvious solution - changing the
>> clients so that the requests from a known source use a different port - is
>> not an option unfortunately.
>> Many thanks
>> Patrick
> The answer probably depends on what the protocol/ports are in this case.
>  What kind of traffic are you dealing with?