From owner-freebsd-questions@FreeBSD.ORG Fri Apr 4 11:05:19 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1EB6637B401 for ; Fri, 4 Apr 2003 11:05:19 -0800 (PST) Received: from csvtg.wnet.ua (csvtg-ed0.Kyiv.wnet.ua [217.20.160.124]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6E9E243F75 for ; Fri, 4 Apr 2003 11:05:14 -0800 (PST) (envelope-from don_oles@ukrtop.com) Received: from home3.wn.net.ua (home3-wi0.Kyiv.wnet.ua [217.20.161.78] (may be forged)) by csvtg.wnet.ua (8.11.6/8.11.6) with ESMTP id h34J59717408 for ; Fri, 4 Apr 2003 22:05:09 +0300 Received: from localhost (localhost [127.0.0.1]) by home3.wn.net.ua (Postfix) with SMTP id 5517729B4 for ; Fri, 4 Apr 2003 22:05:15 +0300 (EEST) X-AV-Checked: Fri Apr 4 22:05:15 2003 on_home3 Received: from athlon.oles.net (unknown [192.168.0.7]) by home3.wn.net.ua (Postfix) with ESMTP id B3A8129B1 for ; Fri, 4 Apr 2003 22:05:14 +0300 (EEST) Date: Fri, 4 Apr 2003 22:05:11 +0300 From: Oles Hnatkevych X-Mailer: The Bat! (v1.60) X-Priority: 3 (Normal) Message-ID: <7110223200.20030404220511@ukrtop.com> To: freebsd-questions@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Subject: like ip nat outside X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Oles Hnatkevych List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 04 Apr 2003 19:05:19 -0000 Hello, freebsd-questions. Suppose I have a point-to-point link from box1 to the other box2. Having a goal to be able to go from the network where box1 resides ("home network") to the network behind box2 ("remote network") one usually sets up NAT on the interface on the box1, so all packets to the box2 via PPP link go with altered addresses. It works is the IP address on PPP interface of box1 gets addressed on the "remote" network behind box2. Let's call it "nat inside". There's wonderful solution called slirp that slightly resembles this scheme but the NAT happens on the box2 by the slirp program, so this looks like "nat outside", and actually that's more funny, since nothing can reach box1 from the "remote network", and this way box1 does not have to be addressed from the "remote network" Now, the question: How I make "nat outside" with the normal PPP link on /dev/tun interfaces? Is it possible with ipnat or with natd? Can't get it clear if it's possible at all... Thanks in advance for help. -- Oles mailto:don_oles@ukrtop.com