From owner-freebsd-questions Wed Dec 6 18:20:23 2000 From owner-freebsd-questions@FreeBSD.ORG Wed Dec 6 18:20:21 2000 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from id1.texhoma.net (id1.texhoma.net [205.240.130.11]) by hub.freebsd.org (Postfix) with ESMTP id 424B737B401 for ; Wed, 6 Dec 2000 18:20:21 -0800 (PST) Received: from office (s2.texhoma.net [205.240.129.37]) by id1.texhoma.net (8.11.1/8.11.1) with SMTP id eB72KFd08588 for ; Wed, 6 Dec 2000 20:20:15 -0600 (CST) Message-ID: <000901c05ff4$52d93740$0200a8c0@texhoma.net> From: "Terry" To: Subject: natd on inside interface Date: Wed, 6 Dec 2000 20:20:47 -0600 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I have a FreeBSD 4.1 server used primarily as a firewall (with three non-dialup ethernet interfaces). Natd is configured and working on the outside interface. I need to run a second instance of natd on an inside interface, but have been unsuccessful so far. I defined "natd2" as a service on port 8669 in /etc/services, edited rc.firewall to divert the desired traffic associated with the interface, defined a script to start the second natd as follows: /sbin/natd -v -n fxp0 -reverse -p natd2 The system shows that it translates addresses as it should for traffic coming in from fxp0, but traffic does not get translated coming back through the interface. IE if I ping a second interface in the server from a machine attached to fxp0, the monitor shows traffic coming in, shows the expected translation, but never shows any response back out through fxp0. The first instance of natd (on the default port 8668) continues to work correctly and the vpn through an outside interface continues to function properly. Any examples or success stories of natd configuration using the -reverse option would be greatly appreciated. Terry To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message