Skip site navigation (1)Skip section navigation (2) 
Date:      Sat, 2 Jun 2001 19:32:29 +0100
From:      Ian Chilton <mailinglist@ichilton.co.uk>
To:        freebsd-stable@FreeBSD.ORG
Subject:   Port Forwarding and Bandwidth Limiting
Message-ID:  <20010602193229.A16562@woody.ichilton.co.uk>
next in thread | raw e-mail | index | archive | help 
Hello,

I have NAT and firewall (ipfw) working, but port forwarding and
bandwidth limiting are not working.

I have and extra IP (say 123.123.123.124) on the box, as ifconfig_vr0_alias0.
vr0 = 123.123.123.123


Then, in natd.conf:

redirect_port tcp 192.168.2.2:21 123.123.123.124:21
redirect_port tcp 192.168.2.2:23 123.123.123.124:23

I was hoping this would re-direct 123.123.123.124 ports 21 and 23 to
192.168.2.2 but it isn't working.

The only thing I can think of is, do I need to open those ports up in
the firewall, like:

${fwcmd} add pass tcp from any to 123.123.123.124 21 setup
${fwcmd} add pass tcp from 123.123.123.124 21 to any

Do I need that?  If so, is those 2 right?



I then have this in rc.firewall:

# Bandwidth Limiting (outgoing):
#${fwcmd} pipe 1 config bw 64Kbit/s queue 10Kbytes
#${fwcmd} add pipe 1 all from ${inet1}:${imask} to any
#${fwcmd} add pipe 1 all from ${ipfw1} to any

# Network Address Translation.
case ${natd_enable} in
[Yy][Ee][Ss])
        if [ -n "${natd_interface}" ]; then
                ${fwcmd} add divert natd all from any to any via ${oif}
        fi
        ;;
esac

# Bandwidth Limiting (incoming):
#${fwcmd} pipe 2 config bw 64Kbit/s queue 10Kbytes
#${fwcmd} add pipe 2 all from any to ${inet1}:${imask}
#${fwcmd} add pipe 2 all from any to ${ipfw1}


But, this isn't working either...everything stops working when I
uncomment these..


Any ideas?


Thanks!


Bye for Now,

Ian


                                  \|||/ 
                                  (o o)
 /-----------------------------ooO-(_)-Ooo----------------------------\
 |  Ian Chilton                    E-Mail: ian@ichilton.co.uk         |
 |  IRC Nick: GadgetMan            Backup: ichilton@www.linux.org.uk  |
 |  ICQ: 16007717 / 104665842      Web   : http://www.ichilton.co.uk  |
 |--------------------------------------------------------------------|
 |       For people who like peace and quiet: a phoneless cord        |
 \--------------------------------------------------------------------/


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010602193229.A16562>