IP Masquerade is a networking function in Linux similar to the one-to-many (1:Many) NAT (Network Address Translation) servers found in many commercial firewalls and network routers. For example, if a Linux host is connected to the Internet via PPP, Ethernet, etc., the IP Masquerade feature allows other "internal" computers connected to this Linux box (via PPP, Ethernet, etc.) to also reach the Internet as well. Linux IP Masquerading allows for this functionality even though these internal machines don't have an officially assigned IP address.

MASQ allows a set of machines to invisibly access the Internet via the MASQ gateway. To other machines on the Internet, the outgoing traffic will appear to be from the IP MASQ Linux server itself. In addition to the added functionality, IP Masquerade provides the foundation to create a HEAVILY secured networking environment. With a well built firewall, breaking the security of a well configured masquerading system and internal LAN should be considerably difficult to accomplish.

Views: 101

Comment by Anand Patel on October 1, 2013 at 7:36pm

good piece of information...

Comment by Abdhesh Jha on October 1, 2013 at 8:39pm
Good one.!
Comment by Brijesh Rajendrasinh Waghela on October 3, 2013 at 11:01pm

Good one sir!

Comment by Akash patel on October 4, 2013 at 4:21pm
It's very simple to masquerade (internet connection sharing in Windows language ) on Linux with a few lines of iptables and ip_forward commands.

First of all you have to flush and delete existing firewall rules.
So flush rules by typing in terminal:
iptables -F
iptables -t nat -F
iptables -t mangle -F

Now delete these chains:
iptables -X
iptables -t nat -X
iptables -t mangle -X

Now it's time to save the iptables rules so type:
service iptables save
service iptables restart

Now all rules and chains have been cleared!

check the status of your iptables service:
chkconfig –list iptables
Comment by Amardeepsinh Indrasinh Puvar on October 5, 2013 at 3:18pm
benifit : if your Linux host has more than one modem and acts as a PPP or SLIP server connected to other computers, and these machines do not have official or public assigned IP addresses (i.e. addressed with private TCP/IP numbers).
Comment by KHENGAR HARDIKKUMAR VIJAYSINH on November 10, 2013 at 3:32pm

this is amazing.. good one...

Comment by KHENGAR HARDIKKUMAR VIJAYSINH on January 1, 2014 at 9:08pm

it will be helpful for finding such a new ip add...

Comment by Akash patel on January 1, 2014 at 9:18pm

if you want to find out then u definitely find ip...


You need to be a member of D-Link Academy Community to add comments!

Join D-Link Academy Community

© 2021   Created by Richard Parker.   Powered by

Badges  |  Report an Issue  |  Terms of Service