Date: Mon, 22 Jan 2001 15:10:23 +0100 From: Per Tore Larsen <per.tore.larsen@fernonorden.com> To: 'Kathy Quinlan' <katinka@magestower.com>, "Freebsd-Questions (E-post)" <freebsd-questions@FreeBSD.ORG> Subject: RE: Static Nat Message-ID: <25879E6A7E74D411B9370050043B7F3E09F8DC@RUBICON>
next in thread | raw e-mail | index | archive | help
This message is in MIME format. Since your mail reader does not understand this format, some or all of this message may not be legible. ------_=_NextPart_001_01C0847D.0FA11FD0 Content-Type: text/plain; charset="iso-8859-1" Lets do a hypothetical setup... rdr ed0 0.0.0.0/0 port 80 -> 10.1.1.2 port 80 when i put 0.0.0.0/0 it tells ipnat to lookup the dhcp adresse automatically in everytime it starts. (Actually, this you need to try, since I've dont use dhcp on my internet line.) How is have you setup you existing ipnat.conf file? Here you should see how ipnat implements dhcp in its table. Also, you need to punch a hole through port 80 your firewall to let internet axess your webserver inside you LAN. Also for reference: www.freebsddiary.org <http://www.freebsddiary.org/>; can answer alot of your questions. Look under ipnat,ppp or ipfw. PeTe (Remember to send a copy to freebsd questions so other users may have a chance to flame me when/if I make any obvious mistakes.) -----Original Message----- From: Kathy Quinlan [mailto:katinka@magestower.com] Sent: Monday, January 22, 2001 2:58 PM To: Per Tore Larsen Subject: Re: Static Nat Ok I take it that <ext.netcard> ed0 ? what would I put for the <ext.ip> as mine is dynamic ? Kat. ----- Original Message ----- From: Per Tore Larsen <mailto:per.tore.larsen@fernonorden.com> To: 'Claudio Petronio' <mailto:cpetronio@argentinaanalytica.com> ; Freebsd-Questions (E-post) <mailto:freebsd-questions@FreeBSD.ORG> Sent: Monday, January 22, 2001 9:40 PM Subject: RE: Static Nat This is the config I used to route all request to my webserver from the internet to my internal web server. rdr <ext. netcard> <ext.ip>/32 port 80 -> 10.1.1.2 port 80 Observ I use ipnat, and I have omitted the rules for NAT'ing my internal net. PeTe -----Original Message----- From: Claudio Petronio [mailto:cpetronio@argentinaanalytica.com] Sent: Monday, January 22, 2001 2:35 PM To: questions@FreeBSD.org <mailto:questions@FreeBSD.org> Subject: Static Nat How may I setup Static Nat on a FreeBsd firewall?, i need to make a static nat for my webserver which uses a private ip (192.168.1.1) to make it visible as a public ip webserver. Should I use proxy ARP? Thanks in advance, Claudio Petronio. ------_=_NextPart_001_01C0847D.0FA11FD0 Content-Type: text/html; charset="iso-8859-1" <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <HTML><HEAD> <META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1"> <META content="MSHTML 5.50.4522.1800" name=GENERATOR> <STYLE></STYLE> </HEAD> <BODY bgColor=#ffffff> <DIV><FONT face=Arial color=#0000ff size=2><SPAN class=046480314-22012001>Lets do a hypothetical setup...</SPAN></FONT></DIV> <DIV><FONT face=Arial color=#0000ff size=2><SPAN class=046480314-22012001></SPAN></FONT> </DIV> <DIV><FONT face=Arial color=#0000ff size=2><SPAN class=046480314-22012001>rdr ed0 0.0.0.0/0 port 80 -> 10.1.1.2 port 80</SPAN></FONT></DIV> <DIV><FONT face=Arial color=#0000ff size=2><SPAN class=046480314-22012001></SPAN></FONT> </DIV> <DIV><FONT face=Arial color=#0000ff size=2><SPAN class=046480314-22012001>when i put 0.0.0.0/0 it tells ipnat to lookup the dhcp adresse automatically in everytime</SPAN></FONT></DIV> <DIV><FONT face=Arial color=#0000ff size=2><SPAN class=046480314-22012001>it starts. (Actually, this you need to try, since I've dont use dhcp on </SPAN></FONT><FONT face=Arial color=#0000ff size=2><SPAN class=046480314-22012001>my internet line.)</SPAN></FONT></DIV> <DIV><FONT face=Arial color=#0000ff size=2><SPAN class=046480314-22012001></SPAN></FONT><FONT face=Arial color=#0000ff size=2><SPAN class=046480314-22012001></SPAN></FONT> </DIV> <DIV><FONT face=Arial color=#0000ff size=2><SPAN class=046480314-22012001>How is have you setup you existing ipnat.conf file? Here you should see how ipnat</SPAN></FONT></DIV> <DIV><FONT face=Arial color=#0000ff size=2><SPAN class=046480314-22012001>implements dhcp in its table.</SPAN></FONT></DIV> <DIV><FONT face=Arial color=#0000ff size=2><SPAN class=046480314-22012001></SPAN></FONT><FONT face=Arial color=#0000ff size=2><SPAN class=046480314-22012001></SPAN></FONT> </DIV> <DIV><FONT face=Arial color=#0000ff size=2><SPAN class=046480314-22012001>Also, you need to punch a hole through port 80 your firewall to let internet axess your</SPAN></FONT></DIV> <DIV><FONT face=Arial color=#0000ff size=2><SPAN class=046480314-22012001>webserver inside you LAN.</SPAN></FONT></DIV> <DIV><FONT face=Arial color=#0000ff size=2><SPAN class=046480314-22012001></SPAN></FONT> </DIV> <DIV><FONT face=Arial color=#0000ff size=2><SPAN class=046480314-22012001> <DIV><FONT face=Arial color=#0000ff size=2><SPAN class=046480314-22012001>Also for reference:</SPAN></FONT></DIV> <DIV><FONT face=Arial color=#0000ff size=2><SPAN class=046480314-22012001><A href="http://www.freebsddiary.org/">www.freebsddiary.org</A>; can answer alot of your questions. Look under ipnat,ppp or ipfw.</SPAN></FONT></DIV></SPAN></FONT></DIV> <DIV><FONT face=Arial color=#0000ff size=2><SPAN class=046480314-22012001></SPAN></FONT> </DIV> <DIV><FONT face=Arial color=#0000ff size=2><SPAN class=046480314-22012001>PeTe</SPAN></FONT></DIV> <DIV><FONT face=Arial color=#0000ff size=2></FONT> </DIV> <DIV><FONT face=Arial color=#0000ff size=2><SPAN class=046480314-22012001>(Remember to send a copy to freebsd questions so other users may have a chance to</SPAN></FONT></DIV> <DIV><FONT face=Arial color=#0000ff size=2><SPAN class=046480314-22012001>flame me when/if </SPAN></FONT><FONT face=Arial color=#0000ff size=2><SPAN class=046480314-22012001>I make any obvious mistakes.)</SPAN></FONT></DIV> <DIV><FONT face=Arial color=#0000ff size=2></FONT> </DIV> <BLOCKQUOTE dir=ltr style="PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #0000ff 2px solid; MARGIN-RIGHT: 0px"> <DIV class=OutlookMessageHeader dir=ltr align=left><FONT face=Tahoma size=2>-----Original Message-----<BR><B>From:</B> Kathy Quinlan [mailto:katinka@magestower.com]<BR><B>Sent:</B> Monday, January 22, 2001 2:58 PM<BR><B>To:</B> Per Tore Larsen<BR><B>Subject:</B> Re: Static Nat<BR><BR></FONT></DIV> <DIV><FONT face=Arial size=2>Ok I take it that <ext.netcard> ed0 ?</FONT></DIV> <DIV><FONT face=Arial size=2></FONT> </DIV> <DIV><FONT face=Arial size=2>what would I put for the <ext.ip> as mine is dynamic ?</FONT></DIV> <DIV><FONT face=Arial size=2></FONT> </DIV> <DIV><FONT face=Arial size=2></FONT> </DIV> <DIV><FONT face=Arial size=2>Kat.</FONT></DIV> <BLOCKQUOTE dir=ltr style="PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #000000 2px solid; MARGIN-RIGHT: 0px"> <DIV style="FONT: 10pt arial">----- Original Message ----- </DIV> <DIV style="BACKGROUND: #e4e4e4; FONT: 10pt arial; font-color: black"><B>From:</B> <A title=per.tore.larsen@fernonorden.com href="mailto:per.tore.larsen@fernonorden.com">Per Tore Larsen</A> </DIV> <DIV style="FONT: 10pt arial"><B>To:</B> <A title=cpetronio@argentinaanalytica.com href="mailto:cpetronio@argentinaanalytica.com">'Claudio Petronio'</A> ; <A title=freebsd-questions@FreeBSD.ORG href="mailto:freebsd-questions@FreeBSD.ORG">Freebsd-Questions (E-post)</A> </DIV> <DIV style="FONT: 10pt arial"><B>Sent:</B> Monday, January 22, 2001 9:40 PM</DIV> <DIV style="FONT: 10pt arial"><B>Subject:</B> RE: Static Nat</DIV> <DIV><FONT face=Arial color=#0000ff size=2></FONT><FONT face=Arial color=#0000ff size=2></FONT><FONT face=Arial color=#0000ff size=2></FONT><FONT face=Arial color=#0000ff size=2></FONT><BR></DIV> <DIV><SPAN class=109294113-22012001><FONT face=Arial color=#0000ff size=2>This is the config I used to route all request to my webserver from the internet to my internal</FONT></SPAN></DIV> <DIV><SPAN class=109294113-22012001><FONT face=Arial color=#0000ff size=2>web server.</FONT></SPAN></DIV> <DIV><SPAN class=109294113-22012001><FONT face=Arial color=#0000ff size=2></FONT></SPAN> </DIV> <DIV><SPAN class=109294113-22012001><FONT face=Arial color=#0000ff size=2>rdr <ext. netcard> <ext.ip>/32 port 80 -> 10.1.1.2 port 80</FONT></SPAN></DIV> <DIV><SPAN class=109294113-22012001><FONT face=Arial color=#0000ff size=2></FONT></SPAN> </DIV> <DIV><SPAN class=109294113-22012001><FONT face=Arial color=#0000ff size=2>Observ I use ipnat, and I have omitted the rules for NAT'ing my internal net.</FONT></SPAN></DIV> <DIV><SPAN class=109294113-22012001><FONT face=Arial color=#0000ff size=2></FONT></SPAN> </DIV> <DIV><SPAN class=109294113-22012001><FONT face=Arial color=#0000ff size=2>PeTe</FONT></SPAN></DIV> <BLOCKQUOTE dir=ltr style="PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #0000ff 2px solid; MARGIN-RIGHT: 0px"> <DIV class=OutlookMessageHeader dir=ltr align=left><FONT face=Tahoma size=2>-----Original Message-----<BR><B>From:</B> Claudio Petronio [mailto:cpetronio@argentinaanalytica.com]<BR><B>Sent:</B> Monday, January 22, 2001 2:35 PM<BR><B>To:</B> <A href="mailto:questions@FreeBSD.org">questions@FreeBSD.org</A><BR><B>Subject:</B> Static Nat<BR><BR></FONT></DIV> <DIV><FONT face=Arial size=2>How may I setup Static Nat on a FreeBsd firewall?, i need to make a static nat for my webserver which uses a private ip (192.168.1.1) to make it visible as a public ip webserver. Should I use proxy ARP?</FONT></DIV> <DIV> </DIV> <DIV><FONT face=Arial size=2>Thanks in advance,</FONT></DIV> <DIV> </DIV> <DIV><FONT face=Arial size=2>Claudio Petronio.</FONT></DIV></BLOCKQUOTE></BLOCKQUOTE></BLOCKQUOTE></BODY></HTML> ------_=_NextPart_001_01C0847D.0FA11FD0-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?25879E6A7E74D411B9370050043B7F3E09F8DC>