Date: Thu, 8 Apr 2010 10:42 -1000 From: "Gary Dunn" <osp@aloha.com> To: "freebsd-questions" <freebsd-questions@freebsd.org> Subject: Re: Kernel Config for NAT Message-ID: <201004082043.o38KhiFi015433@leka.aloha.com>
next in thread | raw e-mail | index | archive | help
On Thu, 8 Apr 2010 08:10:34 -0400 Robert Huff <roberthuff@rcn.com> wrote: > So ... double-checking I'm doing this right: > > 1) in /boot/loader.conf: > > ipfw_load=3D"YES" > ipdivert_load=3D"YES" yes; see NAT HB 31.9.3 > > 2) in the kernel config: IMHO, and according to Adam Vandr More, kernel options are no longer = required. > > 3) in /etc/sysctl.conf: > > net.inet.ip.fw.default_to_accept=3D"1" see NAT HB 31.9.3 > net.inet.ip.fw.verbose=3D"1" > net.inet.ip.fw.verbose_limit=3D"100" see IPFW HB 30.6.1 I would use a smaller limit such as 5. > > > That cover > it? Still need entries in /etc/rc.conf. See HB 30.9.5, 30.6.3, 30.6.5.7 I also have DHCP serving the downstream (private) network. Upstream gets = configured by dhclient. -- Gary Dunn, Honolulu osp@aloha.com http://openslate.net/ http://e9erust.blogspot.com/ Sent from a Newton 2100 via Mail V
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201004082043.o38KhiFi015433>