SHOREWALL6-NAT(5) | Configuration Files | SHOREWALL6-NAT(5) |
NAME¶
nat - Shorewall6 one-to-one NAT fileSYNOPSIS¶
/etc/shorewall6/nat
DESCRIPTION¶
This file is used to define one-to-one Network Address Translation (NAT).Warning
If all you want to do is simple port forwarding, do NOT use this file. See http://www.shorewall.net/FAQ.htm#faq1[1].
The columns in the file are as follows (where the column name is followed by a different name in parentheses, the different name is used in the alternate specification syntax).
EXTERNAL - {address|?COMMENT}
If you put ?COMMENT in this column, the rest of the line will be attached as a comment to the Netfilter rule(s) generated by the following entries in the file. The comment will appear delimited by "/* ... */" in the output of "shorewall show nat"
To stop the comment from being attached to further rules, simply include ?COMMENT on a line by itself.
INTERFACE - interfacelist[:[digit]]
Each interface must match an entry in shorewall6-interfaces[3](5). Shorewall allows loose matches to wildcard entries in shorewall6-interfaces[4](5). For example, ppp0 in this file will match a shorewall6-interfaces[3](5) entry that defines ppp+.
If you want to override ADD_IP_ALIASES=Yes for a particular entry, follow the interface name with ":" and no digit (e.g., "eth0:").
INTERNAL - address
ALLINTS - [Yes|No]
This column was formerly labelled ALL INTERFACES.
LOCAL - [Yes|No]
FILES¶
/etc/shorewall6/natSEE ALSO¶
http://www.shorewall.net/NAT.htm[5]http://www.shorewall.net/configuration_file_basics.htm#Pairs[6]
NOTES¶
- 2.
- shorewall6.conf
- 3.
- shorewall6-interfaces
- 4.
- shorewall6-interfaces
03/16/2017 | Configuration Files |