From owner-freebsd-questions Fri Aug 20 0:35:41 1999 Delivered-To: freebsd-questions@freebsd.org Received: from relay.ucb.crimea.ua (relay.ucb.crimea.ua [212.110.138.1]) by hub.freebsd.org (Postfix) with ESMTP id C9B99151B9 for ; Fri, 20 Aug 1999 00:31:40 -0700 (PDT) (envelope-from ru@ucb.crimea.ua) Received: (from ru@localhost) by relay.ucb.crimea.ua (8.9.3/8.9.3/UCB) id KAA52250; Fri, 20 Aug 1999 10:23:41 +0300 (EEST) (envelope-from ru) Date: Fri, 20 Aug 1999 10:23:30 +0300 From: Ruslan Ermilov To: James Gill Cc: questions@freebsd.org Subject: Re: natd redirects not happening Message-ID: <19990820102330.A44737@relay.ucb.crimea.ua> Mail-Followup-To: James Gill , questions@freebsd.org References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.95.3i In-Reply-To: ; from James Gill on Thu, Aug 19, 1999 at 12:52:18PM -0400 X-Operating-System: FreeBSD 3.2-STABLE i386 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Thu, Aug 19, 1999 at 12:52:18PM -0400, James Gill wrote: > > I'm having trouble trying to redirect incoming connections to my > firewall on specific ports to other machines on my network. > > In looking at my natd stuff in rc.conf and it seems (to me) to be > right: > -------------------------------------- > ### FIREWALL AND NATD CONFIG ### > firewall_enable="YES" > firewall_type="open" > > natd_program="/sbin/natd" > natd_enable="YES" #firewall_enable must also be set to yes > # #and ipdivert must also be in kernel > natd_interface="ed1" > natd_flags="-f /etc/rc.natd" > -------------------------------------- > > and the file rc.natd is long and full of comments, but here's the > relevant section: > -------------------------------------- > ### redirected ports ### > # redirect_port proto tergetIP:targetPORT [aliasIP:]aliasPORT \ > # [remoteIP[:remotePORT]] > # example: redirect_port tcp inside1:telnet 6666 > # means that tcp packets destines for port 6666 on this machine will > be sent > # to the telnet port on the inside1 machine > #redirect_port > redirect_port tcp 10.101.101.33:21 21 #ftp > redirect_port tcp 10.101.101.131:23 23 #telnet > redirect_port tcp 10.101.101.33:25 25 #smtp > redirect_port tcp 10.101.101.33:80 80 #www-tcp > redirect_port udp 10.101.101.33:80 80 #www-udp > redirect_port tcp 10.101.101.33:110 110 #pop3-tcp > redirect_port udp 10.101.101.33:110 110 #pop3-udp > -------------------------------------- > > What am i missing? Why are my redirects not happening? > This is a bug in natd(8). Remove the comments (`#ftp', etc.) at the end of your redirect_port lines and you should be OK. This will be fixed soon. -- Ruslan Ermilov Sysadmin and DBA of the ru@ucb.crimea.ua United Commercial Bank, ru@FreeBSD.org FreeBSD committer, +380.652.247.647 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message