From owner-freebsd-questions@FreeBSD.ORG Fri Dec 26 12:51:29 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 90F9316A4CE for ; Fri, 26 Dec 2003 12:51:29 -0800 (PST) Received: from mta13.srv.hcvlny.cv.net (mta13.srv.hcvlny.cv.net [167.206.5.82]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7848743D49 for ; Fri, 26 Dec 2003 12:51:27 -0800 (PST) (envelope-from timothyk@wallnet.com) Received: from 10.0.1.9 (ool-4353d5dd.dyn.optonline.net [67.83.213.221]) by mta13.srv.hcvlny.cv.net (iPlanet Messaging Server 5.2 HotFix 1.16 (built May 14 2003)) with ESMTP id <0HQI000SDSL86T@mta13.srv.hcvlny.cv.net> for freebsd-questions@freebsd.org; Fri, 26 Dec 2003 15:51:09 -0500 (EST) Date: Fri, 26 Dec 2003 15:51:25 -0500 From: Tim Kellers In-reply-to: <20031226203632.15022.qmail@web40408.mail.yahoo.com> To: beantaxi@yahoo.com, freebsd Message-id: <200312261551.25731.timothyk@wallnet.com> MIME-version: 1.0 Content-type: text/plain; charset=iso-8859-1 Content-transfer-encoding: 7BIT Content-disposition: inline User-Agent: KMail/1.5.4 References: <20031226203632.15022.qmail@web40408.mail.yahoo.com> Subject: Re: natd.conf problem (was: natd problem (but close!) ) X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 26 Dec 2003 20:51:29 -0000 On Friday 26 December 2003 03:36 pm, The Bean wrote: > I've made a tad of progress. Since everyone and his > brother can configure FreeBSD to act as a gateway, > I decided to focus on the one difference between my > setup and the generic gateway setup: my one-line > natd.conf file, with the line > > redirect_address 10.0.0.13 xx.yy.zz.186 > > It looked like the gateway was doing the internal-to- > external translation on outgoing packets, but was unable > to translate from external to internal. Anyway, I commented > that one line, so my natd.conf is essentially empty. > Success -- I can get packets forwarded no problem (otherwise > you wouldn't be reading this!) > > Of course, this means I can't really serve anything, so > I'm not done yet. It would make sense I have a snag in my > natd.conf file, since it's the one piece I was taking a wild > stab at. Does anyone know what that file should look like, > for a simple address redirection? > > Thanks a lot, > T.B. I don't have a natd.conf file on one of my development boxes, but I do have this in /etc/rc.conf: firewall_enable="YES" firewall_type="OPEN" natd_enable="YES" natd_flags="-redirect_port tcp 10.0.1.9:5800-6600 5800-6600" Yeah, it's wide open and insecure, but it does work and might be a starting point for you. (The above snip is from a 4.9-STABLE installation) Tim Kellers CPE/NJIT