Skip site navigation (1)Skip section navigation (2) 
Date:      Thu, 10 Dec 1998 07:45:00 -0600
From:      Nelson <rjn103s@mgr3.k12.mo.us>
To:        security@FreeBSD.ORG
Subject:   firewall && natd && private class B
Message-ID:  <3.0.6.32.19981210074500.0087a050@mgr3.k12.mo.us>
next in thread | raw e-mail | index | archive | help 
Greetings,

I would like to put our mail && http server behind our firewall.  To do
this I setup a small test for the devices and actually placed them behind
the firewall, gave the firewall alias addresses, and added some
configurations in a configuration file for natd as follows

#natd config file
same_ports yes
#redirect mail
redirect_port tcp 172.16.0.3:smtp outside_address:smtp
redirect_port udp 172.16.0.3:smtp outside_address:smtp
redirect_port tcp 172.16.0.3:pop3 outside_address:pop3
redirect_port udp 172.16.0.3:pop3 outside_address:pop3
#redirect http
redirect_port tcp inside_address:80 outside_address:80
redirect_port udp inside_address:80 outside_address:80

voila! It worked for any workstation that had a "real" IP like a champ!
However when I tried the workstation with addresses from our Class B I
could not get it to work with any address of the form 172.16.xxx.xxx
255.255.0.0 (only tested with w95 boxes).  From the client I kept getting
10061 error with the mail.  So, I suspected something with the mail client
or server however when I tried the webserver I get no success, I get an
error of timed outok with private ip's and works like a champ with real
ip's.  Which lets the mail client and server off the hook. Now I am not for
sure where to look for a problem.:(

I am thinking I have missed something simple, any ideas what??

Thoughts Welcome!



Richard Nelson
Technology Director
Research & Development Director
System Administrator
Mountain Grove R-III Schools
420 N. Main
Mountain Grove, MO 65711
+++++++++++++++++++++++++++++++++++++++++
+ FreeBSD, Linux, & Java = Excellence   +
+ http://www.freebsd.org                +
+ http://www.redhat.com                 +
+ http://java.sun.com/                  +
+ Samba + (FreeBSD||Linux)= Free PDC!   +
+ Using FreeBSD for Servers!		+
+ Using Linux for Workstaions!		+
+++++++++++++++++++++++++++++++++++++++++






To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3.0.6.32.19981210074500.0087a050>