[Ferm] Any way to SNAT in IPv6 ?
Christophe
tech at stuxnet.org
Sun Dec 8 19:54:18 CET 2013
Hi list,
I use ferm in many cases , and is really a marvelous tool.
But I have a singular case to handle. I need to get SNAT target with
ip6tables working while using ferm.
the ip6tables syntax is the following :
ip6tables -t nat -A POSTROUTING -o eth3 -j SNAT --to 2a01:xxx:xxx:xxx::2
I used the following syntax in ferm.conf :
domain ip6 {
table nat {
chain POSTROUTING {
outerface $out_if2 {
SNAT to $host_gw2_snat;
}
}
}
table filter {
...
...
...
}
}
And the result is :
root at gwv6:~# ferm --interactive --timeout /etc/ferm/ferm.conf
ip6tables-restore v1.4.14: unknown option "--to-source"
Problem seems that syntax differs from iptables, that uses
'--to-source', while ip6tables uses '--to'.
Is there anyway to get this work with ferm syntax ?
Regards,
Christophe.
More information about the Ferm
mailing list