From owner-freebsd-questions  Mon Jun  3 12:31:36 2002
Delivered-To: freebsd-questions@freebsd.org
Received: from web14106.mail.yahoo.com (web14106.mail.yahoo.com [216.136.172.136])
	by hub.freebsd.org (Postfix) with SMTP id 3871137B405
	for <questions@FreeBSD.ORG>; Mon,  3 Jun 2002 12:31:29 -0700 (PDT)
Message-ID: <20020603193129.41676.qmail@web14106.mail.yahoo.com>
Received: from [209.105.201.115] by web14106.mail.yahoo.com via HTTP; Mon, 03 Jun 2002 12:31:29 PDT
Date: Mon, 3 Jun 2002 12:31:29 -0700 (PDT)
From: "K. Greenwood" <k_greenwood1@yahoo.com>
Subject: Re: Dual Natd? 
To: Chris Fedde <chris@fedde.littleton.co.us>,
	Mark-Nathaniel Weisman <mark@outlander.us>
Cc: questions@FreeBSD.ORG
In-Reply-To: <200206020519.g525JbQW046982@fedde.littleton.co.us>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG


--- Chris Fedde <chris@fedde.littleton.co.us> wrote:
> On Sat, 01 Jun 2002 10:55:10 -0800  Mark-Nathaniel
> Weisman wrote:
>  +------------------
>  | I want to be able to use multiple external cards
> for natd to a singular
>  | internal card. How is this done? In the rc.conf
> file I've added a singular
>  | line for the natd
>  +------------------
> 
> You may choose to use an IP address in place of an
> interface name.
> This causes the rc.network script to use it as the
> alias address
> for all packets passed to nat by the firewall rules.
>  The address
> will be the source address for all packets that are
> passed to nat
> regardless of their origin interface.   Things will
> get decidedly
> more complex if you need two independent nat groups
> on one FreeBSD
> box.  At some point the pre-set options offered by
> rc.network and
> rc.firewall using rc.config variables will break
> down and you will
> need to write your own startup scripts.
> 
> --
>     Chris Fedde


Sorry to barge in on the conversation, but it seems to
have
stagnated, and this topic does hold some interest to
me.

Do you know of any documents that have a bit of detail
regarding
running NATD on two completely different external
interfaces 
which will allow access to an internal network via a
third NIC? 

I am likely to need such a configuration in the
foreseeable
future.  Any direction would be apprieciated, and let
it be known
that I am a significant newbie.

Thanks for taking the time to read this message.

Keith

__________________________________________________
Do You Yahoo!?
Yahoo! - Official partner of 2002 FIFA World Cup
http://fifaworldcup.yahoo.com

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message