Xephyr
asked on
Unusual NAT question
I have to configure a rather unusual network address translation scheme in a linux box;
These are the interfaces and information about them
eth0 - This interface has the IP address of 10.10.4.5 with gateway 10.10.4.1
eth1 - This interface has the address of 2.2.2.1 and is a NAT gateway itself which is connected to a single machine with IP 2.2.2.5
eth2 - This interface has the address of 10.0.0.2 and connects to a private LAN
I wish to do the following operation with these three interfaces;
- [any] request from outside to eth0's local IP number 10.10.4.5 must first be redirected to 2.2.2.5 [that machine connected to eth1]
- The machine [2.2.2.5] that gets redirected packets from 10.10.4.5 must send them back 10.10.4.5**
!! But this 10.10.4.5 is a different host, not the local IP number assigned eth0. This causes all the problem in this scheme now...
To simplify the issue I could explain the following;
Consider that there is machine with two ethernet ports:
- 1st Ethernet port has an address assigned as 10.10.4.5
- 2nd Ethernet port has an address assigned as 10.0.0.2
These two networks are not in the same subnet physically, they are separate networks:
In the subnet to which the 2nd ethernet port is connected, there is a host whose address is the same as 10.10.4.5, and this address of this host must not be changed. So there are two networks, and two different hosts on both with the same address.
What can I do to resolve the issue without changing the IP addresses. (Indeed if I change the addresses it would be very easy, but it will not be convenient for our current network. We are just trying to connect one network to the other through two hosts that have the same IP address.
Any urgent help would be greatly appreciated...
These are the interfaces and information about them
eth0 - This interface has the IP address of 10.10.4.5 with gateway 10.10.4.1
eth1 - This interface has the address of 2.2.2.1 and is a NAT gateway itself which is connected to a single machine with IP 2.2.2.5
eth2 - This interface has the address of 10.0.0.2 and connects to a private LAN
I wish to do the following operation with these three interfaces;
- [any] request from outside to eth0's local IP number 10.10.4.5 must first be redirected to 2.2.2.5 [that machine connected to eth1]
- The machine [2.2.2.5] that gets redirected packets from 10.10.4.5 must send them back 10.10.4.5**
!! But this 10.10.4.5 is a different host, not the local IP number assigned eth0. This causes all the problem in this scheme now...
To simplify the issue I could explain the following;
Consider that there is machine with two ethernet ports:
- 1st Ethernet port has an address assigned as 10.10.4.5
- 2nd Ethernet port has an address assigned as 10.0.0.2
These two networks are not in the same subnet physically, they are separate networks:
In the subnet to which the 2nd ethernet port is connected, there is a host whose address is the same as 10.10.4.5, and this address of this host must not be changed. So there are two networks, and two different hosts on both with the same address.
What can I do to resolve the issue without changing the IP addresses. (Indeed if I change the addresses it would be very easy, but it will not be convenient for our current network. We are just trying to connect one network to the other through two hosts that have the same IP address.
Any urgent help would be greatly appreciated...
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
If you define a given IP to an interface on this router you can't then send packets to another machine with the same IP that's connected to a different interface. In routing terms an IP is required to be unique meaning that there can be one ond only given IP "in view" of a node. So as stated you can't do what you are trying. The "other copy" of that IP would have to be hidden from the view of this router by a NAT device.
ASKER
eth0 - I wish to use IP address 10.10.4.5 as the own IP for the linux machine
eth1 - I wish to use IP address here which will send data to a different host but with the exact IP address I assigned to eth0
I tried this and it worked;
setting eth0 to 10.10.4.6 and using IPTables -DNAT --to 10.10.4.5, redirecting requests from any host in eth0 to eth1
But I wish to use 10.10.4.5 as my own IP address still and the system totally fails if I try to do as such. Perhaps there is a way to define that 10.10.4.5 (loopback it becomes) has a default route to eth1 --> 10.10.4.5, not the machine's own loopback adapter.
I would wish to hear something soon... (Adding a second NAT box is impossible because we have no place to add another machine here, I tried to use a virtual machine, but since it has to use the routing table of again the main host, routing still fails)