From owner-freebsd-security  Thu Sep 16  8: 0:40 1999
Delivered-To: freebsd-security@freebsd.org
Received: from pinochet.cityline.ru (pinochet.cityline.ru [195.46.160.34])
	by hub.freebsd.org (Postfix) with ESMTP id 8264014F6D
	for <freebsd-security@FreeBSD.ORG>; Thu, 16 Sep 1999 08:00:24 -0700 (PDT)
	(envelope-from g16@mail.ru)
Received: from admin (140.166.fx.dialup.cityline.ru [195.46.166.140])
	by pinochet.cityline.ru (8.9.2/t/08-Oct-1998) with SMTP id SAA02548;
	Thu, 16 Sep 1999 18:53:55 +0400 (MSD)
Message-ID: <001e01bf0053$7d1e8160$0801a8c0@admin.uzdw-centre.ru>
Reply-To: "Oleg Y. Ivanov" <g16@mail.ru>
From: "Oleg Y. Ivanov" <g16@mail.ru>
To: "river" <river@theriver.nu>
Cc: <freebsd-security@FreeBSD.ORG>
Subject: RE: mapping ports from outside to inside (with ipfw ?)
Date: Thu, 16 Sep 1999 18:54:23 +0400
MIME-Version: 1.0
Content-Type: multipart/alternative;
	boundary="----=_NextPart_000_0019_01BF0074.E41A5300"
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 4.72.3110.5
X-MimeOLE: Produced By Microsoft MimeOLE V4.72.3110.3
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

This is a multi-part message in MIME format.

------=_NextPart_000_0019_01BF0074.E41A5300
Content-Type: text/plain;
	charset="windows-1251"
Content-Transfer-Encoding: quoted-printable

>I did that....it talks about the -redirec_address command, but it =
applies as
>mentioned to IP only....so all traffic would be destined for the =
internal
>machine....not just ONE port, which is what I am looking for=20
=20
what about -redirect_port ?
=20
try this :

=20
use_sockets yes
same_ports yes
deny_incoming no
dynamic yes
interface <your_outside_intf_here>
redirect_port <proto>  <internal_host>:<port>  <external_port>
-------------------------------------------------------------------------=
-------
 Sincerely Yours , Oleg Y. Ivanov : sysadmin & DBA of UzDaewoo Centre , =
Moscow=20

PGP fingerprint : EDDD D812 E895 FFF1 BA34 39A4 044E 6E8D 0C0E 64FC=20

------=_NextPart_000_0019_01BF0074.E41A5300
Content-Type: text/html;
	charset="windows-1251"
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE HTML PUBLIC "-//W3C//DTD W3 HTML//EN">
<HTML>
<HEAD>

<META content=3Dtext/html;charset=3Dwindows-1251 =
http-equiv=3DContent-Type><!DOCTYPE HTML PUBLIC "-//W3C//DTD W3 =
HTML//EN"><BASE=20
href=3Dfile://C:\PROGRA~1\COMMON~1\MICROS~1\Stationery\><!DOCTYPE HTML =
PUBLIC "-//W3C//DTD W3 HTML//EN"><BASE=20
href=3D"file://C:\Program Files\Common Files\Microsoft =
Shared\=E2=D5=CD=C1=C7=C1 =C4=CC=D1 =D0=C9=D3=C5=CD\">
<META content=3D'"MSHTML 4.72.3110.7"' name=3DGENERATOR>
</HEAD>
<BODY bgColor=3D#d0d0c8>
<DIV><FONT size=3D2>&gt;I did that....it talks about the =
-redirec_address command,=20
but it applies as<BR>&gt;mentioned to IP only....so all traffic would be =

destined for the internal<BR>&gt;machine....not just ONE port, which is =
what I=20
am looking for </FONT></DIV>
<DIV><FONT size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT size=3D2>what about -redirect_port ?</FONT></DIV>
<DIV><FONT size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT size=3D2>try this :<BR></FONT></DIV>
<DIV><FONT size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT size=3D2>use_sockets yes<BR>same_ports yes<BR>deny_incoming=20
no<BR>dynamic yes<BR>interface =
&lt;your_outside_intf_here&gt;</FONT></DIV>
<DIV><FONT size=3D2>redirect_port &lt;proto&gt;&nbsp;=20
&lt;internal_host&gt;:&lt;port&gt;&nbsp; &lt;external_port&gt;
<HR>
 </FONT><FONT size=3D2>Sincerely Yours , <A =
href=3D"mailto:g16@mail.ru">Oleg Y.=20
Ivanov </A>: sysadmin &amp; DBA of UzDaewoo Centre , Moscow <BR><BR>PGP=20
fingerprint : EDDD D812 E895 FFF1 BA34 39A4 044E 6E8D 0C0E 64FC=20
</FONT></DIV></BODY></HTML>

------=_NextPart_000_0019_01BF0074.E41A5300--



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message