Date: Sun, 28 Jan 2001 01:52:51 +0900 From: Kwangyul Seo <skyul@plus.or.kr> To: freebsd-questions <freebsd-questions@freebsd.org> Subject: ipfw/natd problem Message-ID: <20010128015251.A1754@plus.or.kr>
next in thread | raw e-mail | index | archive | help
--azLHFNyN32YCQGCU
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Hello,
I'd like to use ipfw with natd.
When the firewall type is not "open",
how can I set my firewall to interact with natd?
In case of "open" firewall type,
due to "ipfw add pass from any to any", there's no problem.
but without this line, natd didn't work.
so I added 4 lines after I look into some logs from ipfw.
${fwcmd} add pass all from ${inet}:${imask} to any in via ${iif}
${fwcmd} add pass all from ${oip} to any out via ${oif}
${fwcmd} add pass all from any to ${inet}:${imask} out via ${iif}
${fwcmd} add pass all from any to ${inet}:${imask} in via ${oif}
Is this okay? It worked, but I wonder there lies any problem.
--
Kwangyul Seo <skyul@plus.or.kr>
My Gnupg key is available at http://skyul.plus.or.kr/skyul.gpg
--azLHFNyN32YCQGCU
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.4 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE6cvzjqUpO7he7BaERAnY8AKCHZ8xf2WvSpYYq3QsE1SZFE3HliACcCXXe
MIaARPOiXBVdv1TyqoS+rBY=
=81jj
-----END PGP SIGNATURE-----
--azLHFNyN32YCQGCU--
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010128015251.A1754>