Date: Thu, 10 Apr 2003 06:50:43 +0100 From: "abdul" <freebsd@citizensbankng.com> To: "Joshua Lokken" <joshualokken@attbi.com> Cc: freebsd-questions@freebsd.org Subject: Re: -redirect_port problem Message-ID: <00a701c2ff25$21b04c30$ea640180@abdul> References: <003301c2feb5$af1a7e80$ea640180@abdul> <20030409211853.GB21946@joloxbox.joshualokken.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi Joshua. Thanks for your response. "-redirect_port tcp 128.1.100.139:8080" is what is not working. The site "128.1.100.139" is not accessible from outside, even if the redirect seems to be working after refresh of natd (rebooting) when I use a ps command to see what processes are running. Thanks Abdul ----- Original Message ----- From: "Joshua Lokken" <joshualokken@attbi.com> To: "abdul" <freebsd@citizensbankng.com> Cc: <freebsd-questions@freebsd.org> Sent: Wednesday, April 09, 2003 10:18 PM Subject: Re: -redirect_port problem > * abdul (freebsd@citizensbankng.com) wrote: > ==> I use a FreeBSD box (version 4.7) as my Internet Proxy machine. I presently > ==> use the natd daemon to redirect all HTTP > ==> > ==> traffic to our web server and POP/SMTP to our mail server. This works well. > ==> A portion of my rc.conf file is: > ==> > ==> natd_program="/sbin/natd" # path to natd, if you want a different one. > ==> natd_enable="YES" # Enable natd (if firewall_enable == YES). > ==> natd_interface="tl0" # Public interface or IPaddress to use. > ==> natd_flags=" -redirect_port tcp 128.1.100.139:80 > ==> 207.241.164.30:80 -redirect_port tcp 128.1.100.6:25 25 -redirect_port > ==> > ==> tcp 128.1.100.6:110 110 -redirect_port tc > ==> p 128.1.100.7:80 80 " > ==> > ==> My Problem > ==> > ==> In addition to what I have above, I want to redirect all HTTP traffic from a > ==> particular external server (a public IP) to port > ==> > ==> 8080 of a local machine for our mobile banking software. So I modified my > ==> rc.conf as follows: > ==> > ==> natd_flags=" -redirect_port tcp 128.1.100.139:8080 > ==> 241.164.30:80 -redirect_port tcp 128.1.100.6:25 25 > ==> > ==> -redirect_port tcp 128.1.100.6:110 110 -redirect_port tcp 128.1.100.7:80 80 > ==> " # > ==> I have confirmed that can locally browse to the HTTP based software running > ==> on the local machine in question > > What haven't you confirmed? There isn't a question here; what isn't working? > Can you not access the site from the internet? > > Also, it's not necessary, but I found it easier to keep track of and change > nat rules by creating /etc/natd.conf, putting my rules in that file, and calling > that from rc.conf : > > natd_flags="/etc/natd.conf" > > -- > Joshua > >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?00a701c2ff25$21b04c30$ea640180>