Date: Wed, 19 Mar 2008 15:16:54 -0500 From: Josh Paetzel <josh@tcbug.org> To: freebsd-questions@freebsd.org Cc: Robert Huff <roberthuff@rcn.com> Subject: Re: confusion configuring NAT Message-ID: <200803191516.59344.josh@tcbug.org> In-Reply-To: <18401.29043.824662.173177@jerusalem.litteratus.org> References: <18401.29043.824662.173177@jerusalem.litteratus.org>
next in thread | previous in thread | raw e-mail | index | archive | help
--nextPart5414217.h4EryexdgZ Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Wednesday 19 March 2008 03:02:59 pm Robert Huff wrote: > I'm trying to get NAT going, and apparently failing to > understand large parts of the concept, > 1) Per the handbook I have added > > options IPFIREWALL > options IPDIVERT > > to the kernel. > 2) The firewall is active, and configured so it works for the > machine itself. (Settings appended.) > 3) I need to do translation for all machines on 10.0.0.0/8. > 4) Working from the ipfw man page: > > ipfw add nat 10 all from any to any > > then > > ipfw nat 10 config log ip 10.0.0.0/8 > > Uh-oh: > > ipfw: bad ip address ``10.0.0.0/8'' > > OK, choose one machine. > > ipfw nat 10 config log ip 10.0.0.3 > > Accepted. > 5) Now, start natd. (natd.conf appended) > > /sbin/natd -l -f /etc/natd.conf > > Nope: > > natd: instance default: aliasing address not given > > > Huh? This has gotten a lot more coplicated since the last > time. :-P > > > > Robert Huff I don't see much in the man page for ipfw concerning nat, certainly not the= =20 rules you are specifying. Try man natd =20 =2D-=20 Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB --nextPart5414217.h4EryexdgZ Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.8 (FreeBSD) iEYEABECAAYFAkfhdLsACgkQJvkB8Sevrsu6BQCeOD/lRY/zXkGF+laeY4BxvcR7 89gAnjXv/QPaRZvBcHX9BdTnGKedmc5D =IeN4 -----END PGP SIGNATURE----- --nextPart5414217.h4EryexdgZ--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200803191516.59344.josh>