summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorRobert "ar" Gerus <ar@bash.org.pl>2013-03-24 09:45:10 +0100
committerRobert "ar" Gerus <ar@bash.org.pl>2013-03-24 09:45:10 +0100
commitfa7d9821598352623d15bb6a762ad5e557607f96 (patch)
tree3bf87b7d0ccd4a632874611d69885804afcb8541
parent364e8ccdf741bdeb30c4887500dc761dc525b86b (diff)
downloadold-firewall-fa7d9821598352623d15bb6a762ad5e557607f96.tar.gz
old-firewall-fa7d9821598352623d15bb6a762ad5e557607f96.tar.bz2
old-firewall-fa7d9821598352623d15bb6a762ad5e557607f96.zip
get our snat back
-rw-r--r--rules/01-output-snat8
1 files changed, 4 insertions, 4 deletions
diff --git a/rules/01-output-snat b/rules/01-output-snat
index dbc839f..d34d459 100644
--- a/rules/01-output-snat
+++ b/rules/01-output-snat
@@ -3,9 +3,9 @@ rules() {
iptables --table filter $flag FORWARD -i ${IF_WAN} -o ${IF_LAN} -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
iptables --table filter $flag FORWARD -i ${IF_LAN} -o ${IF_WAN} -j ACCEPT
iptables --table nat $flag POSTROUTING -s ${NET_LAN} -o ${IF_WAN} -j SNAT --to-source ${HOST_KASHA_WAN}
-# if ${HAVE_WAN2}; then
-# iptables --table nat $flag POSTROUTING -s 10.24.20.10 -o ${IF_WAN} -j SNAT --to-source ${HOST_KASHA_WAN2}
-# fi
+ if ${HAVE_WAN2}; then
+ iptables --table nat $flag POSTROUTING -s 10.24.20.10 -o ${IF_WAN} -j SNAT --to-source ${HOST_KASHA_WAN2}
+ fi
# we want to be able to access 192.168.0.1, regardles of which snat we're using
- iptables --table nat $flag POSTROUTING -s ${NET_LAN} -d ${NET_WAN} -j SNAT --to-source ${HOST_KASHA_WAN}
+ iptables --table nat $append POSTROUTING -s ${NET_LAN} -d ${NET_WAN} -j SNAT --to-source ${HOST_KASHA_WAN}
}