[Firehol-support] masquerade vs. snat
Carlos Rodrigues
carlos.efr at mail.telepac.pt
Fri Nov 4 21:00:10 GMT 2005
Hi!
So, I heard that SNAT is more efficient than MASQUERADE when the
gateway machine has a static address, so I proceeded to change my
firehol.conf from...
masquerade ${world_iface} src "${internal_network1} ${internal_network2}"
to...
snat to ${gw_address} outface ${world_iface} src "${internal_network1}
${internal_network2}"
However, this doesn't work. AFAIK, both lines seem to do the same
thing, but masquerade works, and snat doesn't.
--
Carlos Rodrigues
More information about the Firehol-support
mailing list