Date: Tue, 12 Jul 2011 23:05:40 -0700 (PDT) From: Bill Tillman <btillman99@yahoo.com> To: freebsd-questions@freebsd.org Subject: Re: IPFW Firewall NAT inbound port-redirect Message-ID: <1310537140.18043.YahooMailRC@web36506.mail.mud.yahoo.com> In-Reply-To: <CAHu1Y73-M7Ds=zNUDDJboh7_eEPT-uiL6qULBghFJK__NiFKzQ@mail.gmail.com> References: <CAHu1Y70Uq1AkMF--rB8sAw2M1NW8a0x1H9voTPsy3cm5vQ6O2Q@mail.gmail.com> <20110711170729.GG6611@dan.emsphone.com> <1310473165.58370.YahooMailRC@web36501.mail.mud.yahoo.com> <CAHu1Y725TGa8D=TQCKa7VQYDVAFLoABdFOZ%2BJwnMOBck0gWzyA@mail.gmail.com> <20110712160304.GI6611@dan.emsphone.com> <CAHu1Y73-M7Ds=zNUDDJboh7_eEPT-uiL6qULBghFJK__NiFKzQ@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
=0A=0A=0A=0A=0A________________________________=0AFrom: Michael Sierchio <k= udzu@tenebras.com>=0ATo: Dan Nelson <dnelson@allantgroup.com>=0ACc: Bill Ti= llman <btillman99@yahoo.com>; freebsd-questions@freebsd.org=0ASent: Tue, Ju= ly 12, 2011 6:35:19 PM=0ASubject: Re: IPFW Firewall NAT inbound port-redire= ct=0A=0AWe're not talking about natd.=A0 The question was about the use of = ipfirewall nat.=0A=0AOn Tue, Jul 12, 2011 at 9:03 AM, Dan Nelson <dnelson@a= llantgroup.com> wrote:=0A> In the last episode (Jul 12), Michael Sierchio s= aid:=0A>> Is there a way of specifying a particular public address if there= is=0A>> more than one bound to the external interface? =A0A la=0A>>=0A>> n= at 123 config if re0.2 log same_ports redirect_port tcp 10.0.0.3:22 =0A>>10= 2.10.22.1:2222=0A>=0A> Yes; the redirect_port syntax is described in the na= td manpage:=0A>=0A> =A0 =A0 redirect_port proto targetIP:targetPORT[-target= PORT]=0A> =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 [aliasIP:]aliasPORT[-aliasPORT]= =0A> =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 [remoteIP[:remotePORT[-remotePORT]]]= =0A>=0A>=0A>=0A> --=0A> =A0 =A0 =A0 =A0Dan Nelson=0A> =A0 =A0 =A0 =A0dnelso= n@allantgroup.com=0A> _______________________________________________=0A> f= reebsd-questions@freebsd.org mailing list=0A> http://lists.freebsd.org/mail= man/listinfo/freebsd-questions=0A> To unsubscribe, send any mail to "freebs= d-questions-unsubscribe@freebsd.org"=0A>=0A________________________________= _______________=0Afreebsd-questions@freebsd.org mailing list=0Ahttp://lists= .freebsd.org/mailman/listinfo/freebsd-questions=0ATo unsubscribe, send any = mail to "freebsd-questions-unsubscribe@freebsd.org"=0A=0A=0ANATD and IPFW w= ork together. It's a little hard to explain in this format so as =0ADan sug= gests, you should read the manpage on each. Also, do some google searches = =0Aand you will find many helpful articles. But take my word for this, you = can do =0Aexactly what you want with IPFW+NATD. There are those who will pr= obably promote =0APF as the firewall of choice as well. It all depends on w= hat you become familiar =0Awith.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1310537140.18043.YahooMailRC>