From owner-freebsd-questions Thu Nov 16 9: 8:59 2000 Delivered-To: freebsd-questions@freebsd.org Received: from apollo.retec.net (apollo.retec.net [207.99.22.10]) by hub.freebsd.org (Postfix) with ESMTP id 8A1F437B4C5 for ; Thu, 16 Nov 2000 09:08:49 -0800 (PST) Received: from newken (dhcp100.retec.net [207.99.22.100]) by apollo.retec.net (8.9.3/8.9.0) with SMTP id MAA18833 for ; Thu, 16 Nov 2000 12:02:31 -0500 (EST) Message-ID: <02e701c04fef$e0d35c20$641663cf@icarz.com> From: "Ken Menzel" To: Subject: ipfw divert few to many Date: Thu, 16 Nov 2000 12:08:45 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hi, I am looking for some configuration help on ipfw unsing NAT (natd). If this is not the correct forum, please direct me on where I can search. I have hunted the web site and can't seem to come up with an example of a simple man to few NAT example. I followed the tutorial ( www.freebsd.org/tutorials ) on setting up a simple firewall. I actually dropped all the firewall stuff and am just using NAT. All my computers on the private net can get out, but I want to be able to redirect some of my outside IP's to the inside. On the external interface I have to IP's configured (the base IP 207.99.22.11) and an alias of 207.99.22.38 I am not sure of the command to redirect all (or some) incoming requests for 207.99.22.38 to some IP (ie 10.0.0.10). Would that be another divert command? My natd setup now is only two commands (plus the flush and command setup!). Do I need a netd.conf? fwcmd="/sbin/ipfw" # Force a flushing of the current rules before we reload. $fwcmd -f flush # Divert all packets through the tunnel interface. $fwcmd add divert natd all from any to any via fxp0 $fwcmd add pass all from any to any my rc.conf is: ifconfig_fxp0="inet 207.99.22.11 netmask 255.255.255.128" ifconfig_fxp0_alias0="inet 207.99.22.38 " ifconfig_rl0="inet 10.0.0.1 netmask 255.255.255.0" hostname="freebsd2.icarz.com" defaultrouter="207.99.22.1" linux_enable="YES" gateway_enable="YES" natd_enable="YES" natd_interface="fxp0" natd_flags="-dynamic" firewall_enable=yes firewall_script="/etc/firewall/simple" Any advice is appreciated. Ken ----------------------------------------------------- Ken Menzel ICQ# 9325188 www.icarz.com kenm@icarz.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message