Date: Sun, 20 Oct 2002 18:33:34 +0200 (CEST) From: Christian Kratzer <ck-lists@cksoft.de> To: JoeB <barbish@a1poweruser.com> Cc: FBSDQ <questions@FreeBSD.ORG>, "freebsd-isp@FreeBSD. ORG" <freebsd-isp@FreeBSD.ORG> Subject: Re: Alternative to NATD or IPNAT for cable connection. Message-ID: <Pine.LNX.4.33.0210201830010.25862-100000@hirvi.cksoft.de> In-Reply-To: <MIEPLLIBMLEEABPDBIEGOEIDCNAA.barbish@a1poweruser.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi, On Sun, 20 Oct 2002, JoeB wrote: > Help please, I looking for a software port that does NAT > (network address translation). Before getting cable I used user > PPP for dial up ISP with NAT function and then IPFW with > keep-state rules. This worked great because NAT was being done > outside of IPFW. Once I went to cable with DHCP I had to also go > to IPFW with NATD. NATD has problems with IPFW keep-state rules > where rules are mis-matched because of IPFW getting confused between > private and public ip address. natd works fine together with ipfw. You just have to think about the order packets are handled by ipfw and when you pass them to natd. Greetings Christian -- CK Software GmbH Christian Kratzer, Schwarzwaldstr. 31, 71131 Jettingen Email: ck@cksoft.de Phone: +49 7452 889-135 Open Software Solutions, Network Security Fax: +49 7452 889-136 FreeBSD spoken here! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.LNX.4.33.0210201830010.25862-100000>