User interface to Network Address Translation (NAT)


ipnat [-lnrsvCF] -f [filename]

Runs on:



Delete all entries in the current NAT (Network Address Translation) rule listing.
Delete all active entries in the current NAT translation table.
("el") Show the list of current NAT table entry mappings.
Prevent ipnat from calling ioctl or doing anything that alters the running TCP/IP stack.
Remove matching NAT rules instead of adding them to the internal lists.
Retrieve and display NAT statistics.
Turn verbose mode on. Display information relating to rule processing and active rules/table entries.


The ipnat utility opens the given filename (treating "-" as stdin) and parses the file for a set of rules to be added or removed from the IP NAT.

Each rule processed by ipnat is added to the TCP/IP stack's internal lists if there are no parsing problems. Rules are added to the end of the internal lists, matching the order in which they appear when given to ipnat.



See also:

ipf, ipfs, ipfstat, ipmon, lsm-ipfilter-*.so

"Setting up a firewall" in the Securing Your System chapter of the Neutrino User's Guide