DNAT

From Wikipedia, the free encyclopedia

This article does not cite any references or sources. (April 2007)
Please help improve this article by adding citations to reliable sources. Unverifiable material may be challenged and removed.

Destination network address translation, or DNAT, is a kind of network address translation. In DNAT, technique of transparently changing the destination IP address of an en-route packet to another IP address, and changing it back on the reply to this packet. Any router situated between two endpoints can perform this transformation of the packet, but the packet must be altered upon both entry to the network and upon exit from the network.

DNAT is commonly used to publish a service from an internal network to a publicly accessible IP.

[edit] DNAT on Linux

To enable DNAT on Linux, at least one iptables command is required. The connection tracking mechanism of netfilter will ensure that subsequent packets exchanged in either direction (which can be identified as part of the existing DNAT connection) are also transformed.

[edit] See also

SNAT, where the source address is changed, not the destination address

This computer network-related article is a stub. You can help Wikipedia by expanding it.

Categories: Network addressing | Computer network stubs

Views

Interaction

Search

This page was last modified 01:22, 30 March 2008 by Wikipedia user Kubanczyk. Based on work by Wikipedia user(s) Anaxial, Greenrd, Altzinn, Kernel Saunters, SmackBot, Fabrictramp, Netdude, Jimj wpg, Alaibot and Preethamr and Anonymous user(s) of Wikipedia.
All text is available under the terms of the GNU Free Documentation License. (See Copyrights for details.)
Wikipedia® is a registered trademark of the Wikimedia Foundation, Inc., a U.S. registered 501(c)(3) tax-deductible nonprofit charity.
About Wikipedia
Disclaimers