Site Navigation

Date:      Thu, 05 Feb 2015 12:24:53 +0300
From:      Lev Serebryakov <lev@FreeBSD.org>
To:        Ian Smith <smithi@nimnet.asn.au>
Cc:        freebsd-ipfw@freebsd.org
Subject:   Re: does "nat redirect_port tcp" works for you on -CURRENT?
Message-ID:  <54D336E5.2050809@FreeBSD.org>
In-Reply-To: <20150205160544.D38620@sola.nimnet.asn.au>
References:  <54D29A21.2080006@FreeBSD.org> <54D2A7E1.2020902@FreeBSD.org> <20150205160544.D38620@sola.nimnet.asn.au>

---

next in thread | previous in thread | raw e-mail | index | archive | help

---

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

On 05.02.2015 08:08, Ian Smith wrote:

>>> nat 9 config redirect_port tcp 192.168.134.2:16881 16881 
>>> redirect_port udp 192.158.134.2:16881 16881 redirect_port tcp 
>>> 192.168.134.2:22 22222
>>> 
>>> nat 1 config ip $EXT_IP same_ports
>> One more datapoint: if I merge this to one NAT (and change rules 
>> accordingly), redirect work as expected.
>> 
>> But I have TWO different NATs in full config (for two ISPs) and
>> don't want to duplicate all redirection specifications, but want
>> to use third "common" NAT config. And such usage is shown in
>> ipfw(8)!
> Just curious .. what's your value of net.inet.ip.fw.one_pass?
  0!
 But I found problem: LibAlias could not found link with empty
"alias_addr". So, you need have one. Global ("nat config ip ...") or
redirection-specific (redirect_port tcp 192.168.134.2:22 <ip>:22222).
I'll try to fix it.

> And does all of this really need cross-posting to net@ as well as
> ipfw@?
 I'm not sure :) CC: removed.

- -- 
// Lev Serebryakov AKA Black Lion
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (MingW32)

iQJ8BAEBCgBmBQJU0zblXxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w
ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXRGOTZEMUNBMEI1RjQzMThCNjc0QjMzMEFF
QUIwM0M1OEJGREM0NzhGAAoJEOqwPFi/3EePB+wP/2VESImjMft6/1zpYfNo8eK5
jE4IwMgFF2Q91a1Ggr1VqsawW8f2hZnI2rLRzE7NioK8QRuq6T42DEGVk7pZJWKL
xNoSBis7NxUh82ShiDJEyb+yXYOTOMFO8guDhE+zZ3hwAbG3uyjSk5LANKBV7XLT
miA7z5DT85POJsijk4jPAa9L+UdJIT+vXeZZV/vQ1Xr7B1ImWu4ANGZPQ+A+wvEV
ZPnV0dump5nZaUhR0CyPnCUU4tgn0WZS5K0qGjeyjaD5kjDktQ03tsz2m2JHUkM3
niK57PtwgTk8awaN2sZ+eSwj8Fvm0ffy+v/5grdd9GFOCPMYRsRCc9E7oGW7lG84
Wx4Bo3XXNteAXynlYwMS000gkRJCn9J2uFrMi+kLZXJFMI/S5vu2D/9TX6Z7jfvT
wtUgZDGk/OWvDVEUH1Ru8gMrbd3jTi+wozDc7eCV7eScGCr/X5HqqxMLqchW6yYe
d6KCpENzRTOAHWvKByHq/4xPZnkiFdGnDdJCMzQNd9H/uOdZ6CdFVYrA4qxrUBTU
l20+kmEOtm12fRMnlDU1dML1NBPMsfCUIkkoGygJtFNTIxN8QZXysgWMMDMlg+1L
8Bl2QaFNLfueEfi7Vr+QZF9GEYrUU1Xtib9YBFMBmBWDB3YoLKa+r1gdtb2wSsUQ
L6Clfv8DZHIdssCgIxFA
=CdEJ
-----END PGP SIGNATURE-----

---

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?54D336E5.2050809>

Legal Notices | © 1995-2024 The FreeBSD Project. All rights reserved.

Contact