Date: Wed, 1 Jun 2005 12:24:16 +0400 From: "?????????? ???????" <vanyushenkov@yashz.ru> To: "'Biswas, Anumita'" <Anumita.Biswas@netapp.com>, <freebsd-net@freebsd.org> Subject: RE: novell through freebsd firewall Message-ID: <20050601082600.B6EF943D1D@mx1.FreeBSD.org> In-Reply-To: <637A278D8D0DBC438EA5E75C6E1818B902E619F3@magenta.hq.netapp.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Thanks for your reply. I use pf from OpenBSD and nat does not allow unicast responses. Is it possible to run nat and multicast on FreeBSD successfully? Vanyushenkov Alexey Russia -----Original Message----- From: Biswas, Anumita [mailto:Anumita.Biswas@netapp.com] Sent: Tuesday, May 31, 2005 9:14 PM To: ?????????? ???????; freebsd-net@freebsd.org Subject: RE: novell through freebsd firewall Hi, Is there some way of determining the membership of SLP multicast groups on each physical interface of the FreeBSD? If you are using mrouted, then there is a debug level to check membership. Using that, you can verify if the first interface shows one of more members of the SLP multicast groups. If there are no members on the first interface, Freebsd multicast routing will not forward the replies to the first interface. If there are no members, then it could mean that the user agent on the NetWare client has not joined the SLP multicast groups and may need some configuration. Another reason why it is not working could be due to multicast across NAT. I don't know how NAT works with multicast packets. Here multicast packets are sent towards the Novell servers. But on the reverse path, unicast responses with a local IP belonging to the Novell server come back which is the usual NAT. Perhaps NAT is not configured to allow these packets? A. -----Original Message----- From: vanyushenkov@yashz.ru [mailto:vanyushenkov@yashz.ru] Sent: Tuesday, May 31, 2005 3:32 AM To: freebsd-net@freebsd.org Subject: novell through freebsd firewall Hi all! I'm sorry for my poor English. I have Novell netware clients version 4.91 working over ip on windows 2000 boxes which connect to novell netware servers. Everything is good when clients and servers are on the same subnet. I want to separate clients from servers by FreeBSD firewall with 2 interfaces, one ifece is in one subnet, another iface is in another subnet and nat. When client sends request to 239.255.255.253.svrloc udp And 224.0.1.22.svrloc udp It does not receive answer. I tuned freebsd box to forward multicast packets, after that freebsd receives request on one iface, then after nat is Forwards in to second iface and sends multicast packet to servers. Servers send answers to second freebsd iface And do not forward them to first iface. Could anyone can help me please Vanyushenkov alexey Russia _______________________________________________ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050601082600.B6EF943D1D>