From owner-freebsd-security Tue Feb 26 4:12:27 2002 Delivered-To: freebsd-security@freebsd.org Received: from straylight.ringlet.net (discworld.nanolink.com [217.75.135.248]) by hub.freebsd.org (Postfix) with SMTP id 12C4437B400 for ; Tue, 26 Feb 2002 04:12:18 -0800 (PST) Received: (qmail 77803 invoked by uid 1000); 26 Feb 2002 12:12:39 -0000 Date: Tue, 26 Feb 2002 14:12:39 +0200 From: Peter Pentchev To: "Ilya V. Serov" Cc: freebsd-security@FreeBSD.org Subject: Re: Question abt NATD Message-ID: <20020226141239.B349@straylight.oblivion.bg> Mail-Followup-To: "Ilya V. Serov" , freebsd-security@FreeBSD.org References: Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-md5; protocol="application/pgp-signature"; boundary="l76fUT7nc3MelDdI" Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from serov@telecom.lek.ru on Tue, Feb 26, 2002 at 01:24:36PM +0300 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org --l76fUT7nc3MelDdI Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, Feb 26, 2002 at 01:24:36PM +0300, Ilya V. Serov wrote: >=20 > How do You do, guies. >=20 > Sorry in advance, if somebody will consider my question stupid. >=20 > I have a FreeBSD 4.4-RELEASE box with natd configured to perfom ip > maquarading. It is extreemly necessary to be able to view the NAT > translation table. For I guess this info is stored somewhere to let > the kernel know how to translate addresses, so I think it is possible to > read this info from there. Have anyone done this "manulay", or maybe a > standart routine is present to help to do this? I have studied many > documentation sources, but found no hint on the topic. > Can anyone help me? As Tariq Rashid already explained, natd does not store the information inside the kernel. Several of my machines use NAT via ppp(8)'s built-in interface to libalias (which is functionally pretty much the same as natd(8)), and several months ago I wrote up a quick hack to libalias and ppp(8) to display the list of currently masqueraded connections. However, it turned out to be not all that useful, since there were some issues with timing out connections, so I kind of let it rot. If there is enough interest, I could resurrect it and post it for review and suggestions for improvement. G'luck, Peter --=20 Peter Pentchev roam@ringlet.net roam@FreeBSD.org PGP key: http://people.FreeBSD.org/~roam/roam.key.asc Key fingerprint FDBA FD79 C26F 3C51 C95E DF9E ED18 B68D 1619 4553 I am the meaning of this sentence. --l76fUT7nc3MelDdI Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: For info see http://www.gnupg.org iEYEARECAAYFAjx7e7cACgkQ7Ri2jRYZRVMDUQCbBRgXLScmxA7XxJViE1A8OIIk IvIAn0KtIkShTHusAhU25g49hwBpe/M7 =SLt6 -----END PGP SIGNATURE----- --l76fUT7nc3MelDdI-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message