On 11/21/06, Wolfgang S. Rupprecht <wolfgang+gnus200611@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx> wrote:
Is there some official hook in /etc one should use to setup NAT or is it a case that one just has to slap the setting in /etc/rc.local ? I see tons of hits in google for how to setup NAT on linux, but can't find anything that even looks remotely like official documentation. What is the officially sanctioned way to set NAT up? -wolfgang
Doesn't the system-config-securitylevel tool do that when you check an interface you want NATed in the Customize area? It should poke the right iptables rules and turn on the correct flags for you and put them in the officially sanctioned places (likely adding them to the end of /etc/sysconfig/iptables). I have always done it manually (by adding the approriate rules to the end of rc.local) or semi-manually (by adding all the NAT line into my fwbuilder config) so I can't personally verify the efficacy of the s-c-s approach but it makes the most sense to me for someone with simple firewalling needs. /Mike
