Skip site navigation (1)Skip section navigation (2) 
Date:      Tue, 15 Jun 1999 17:13:16 +0200
From:      Erik de Zeeuw <erik@univ-lehavre.fr>
To:        freebsd-questions@freebsd.org
Subject:   NAT/Masquerading question 
Message-ID:  <37666D8C.68DABBC@univ-lehavre.fr>
next in thread | raw e-mail | index | archive | help 
Hi,

I have to deal with 30 X Terminals, each one with its own public
C class ip adress. The problem is that my C class adress space is
getting shorter, and it would be a great thing to set up the 
terminals so that they only have a private ( 192.168.* ) adress.

To achieve this, I grabbed a p133/32Mb/2Gb with one 3Com NIC ( 3c900
combo ) and a cheap NE2000 compatible, and installed a brand new
FreeBSD 3.2-RELEASE on it.

As I already use ipfw on another machine, I decided to use IPFilter
to have a look at it. 

Everything seems to work OK, I used ipnat to do some NAT and hide
the terminals behind the public address of the FreeBSD gateway.

  Terminals     -------------> FreeBSD Gateway -------------> Outside
( 192.168.0.*)   (192.168.0.1)                  (194.x.x.x )
                   ne2000/ed1                     3Com/xl0

I used the following ipnat rules :

map xl0 192.168.0.0/24 -> 194.X.X.X/32 portmap tcp/udp 40000:65000
map xl0 192.168.0.0/24 -> 194.X.X.X/32

The ping is ok from the terminals to the outside, and the telnet is
working fine.

The problem is that the X connections does not work. I read some more
docs about NAT since, and it seems I have to use some kind of X
proxy to make it work.

Question is, where can I find a kind of X proxy ? The servers on 
which the terminals should connect are of several species ( Linux,
Solaris 2.7, and an Irix 6.4 ).

Another question is if there exists some other way to make the X
connections work through the NAT gateway, may be using port 
redirection or other little toys ? May be using more than one real
ip adress would help.

If some of you did succeed in setting this kind of thing, I would be
pleased to hear from them. I didn't checked the other way : natd, but
I think it will give the same results, at least from the docs I've
read.

Thanks in advance,

Erik de Zeeuw,
Universite du Havre,
erik@univ-lehavre.fr


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?37666D8C.68DABBC>