From owner-freebsd-questions@FreeBSD.ORG Mon Oct 4 21:02:48 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9C8D916A4CF for ; Mon, 4 Oct 2004 21:02:48 +0000 (GMT) Received: from musashi.fi.uba.ar (musashi.fi.uba.ar [157.92.49.7]) by mx1.FreeBSD.org (Postfix) with ESMTP id AF4D943D45 for ; Mon, 4 Oct 2004 21:02:47 +0000 (GMT) (envelope-from gkullak@fi.uba.ar) Received: from musashi.fi.uba.ar (localhost.localdomain [127.0.0.1]) by musashi.fi.uba.ar (8.12.10/8.12.10) with ESMTP id i94JdD04025430 for ; Mon, 4 Oct 2004 16:39:13 -0300 Received: (from apache@localhost) by musashi.fi.uba.ar (8.12.10/8.12.10/Submit) id i94JdDsR025428; Mon, 4 Oct 2004 16:39:13 -0300 Received: from 161.190.1.253 (SquirrelMail authenticated user gkullak); by webmail.fi.uba.ar with HTTP; Mon, 4 Oct 2004 16:39:12 -0300 (ART) Message-ID: <38006.161.190.1.253.1096918752.squirrel@161.190.1.253> Date: Mon, 4 Oct 2004 16:39:12 -0300 (ART) From: gkullak@fi.uba.ar To: freebsd-questions@freebsd.org User-Agent: SquirrelMail/1.4.3a-1 X-Mailer: SquirrelMail/1.4.3a-1 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal X-FIUBA-MailScanner-Information: Please contact the ISP for more information X-FIUBA-MailScanner: Found to be clean X-FIUBA-MailScanner-SpamCheck: no es spam (whitelisted), SpamAssassin (puntaje=-3.834, requerido 5, AWL 0.28, BAYES_00 -4.90, NO_REAL_NAME 0.16, RATWR20_MESSID 0.62) X-MailScanner-From: gkullak@fi.uba.ar Subject: IPNAT max static mapping hardcored? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 04 Oct 2004 21:02:48 -0000 Hi, I come from iptables over Red Hat 7.3 in my cable connection(512Kbps). This structure with 20 machines nated in my LAN. 3 machines are running Overnet, this may be that we must redirect 6 port (1 TCP and 1 UDP for each machine) for each Overnet machine. This work fine and transparent proxy in the same machine work fine too. Internet ---> x.x.x.x(public address) | RH 7.3 | 172.16.0.2----> LAN Now, I have been installed FreeBSD 4.10 with ipfilter in RH7.3 position instead, but when I start Overnet on FreeBSD and overnet in ONE machine of the LAN, the FreeBSD crash. What it mean crash? SSH is very slow to prompt for password, proxy transparent may be work, may be no. If a put proxy setting in my IE configuration, the thing work better. Anybody tell my that in one .h C library, the ipfilter program define a constant that fix the max static connection...this is really??? Actually, with ipnat -s, I see 780 mapping. Is this number really high? This do that I thing that ipfilter is designed for very small networks with very network load. What do you thing? I will try putting Red Hat again for test. Regards. -- Gustavo Ariel Kullak e-mail:gkullak@fi.uba.ar -- Gustavo Ariel Kullak e-mail:gkullak@fi.uba.ar TE particular: (011) 4966-1246 TE laboral: (011) 6329-4261 Móvil : 15-5416-1246