Enabling NAT to the outside

Connecting two local networks is useful, but these days it's more common to want to connect a local network to the Internet. The basic concept works the same, but with the necessary addition of NAT. NAT rewrites your packet headers in order to make them appear as if they come from your router, thus effectively hiding your system's address from the destination.

How to do it…

Create a third NIC (eth2) on server 1 and connect it to your cable modem or ISP's router.

Configure eth2 to receive an IP address via DHCP:
```
auto eth2
iface eth2 inet dhcp
```

Use iptables to enable NAT on packets heading out through eth2:

# /sbin/iptables -t nat -A POSTROUTING -o eth2 \
  -j MASQUERADE
# /sbin/iptables -A FORWARD -i eth2 -o eth0 -m \
 state ...

Get Linux Networking Cookbook now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Linux Networking Cookbook by Gregory Boyce

Enabling NAT to the outside

How to do it…

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly