From owner-freebsd-questions Wed Aug 29 10:58:59 2001 Delivered-To: freebsd-questions@freebsd.org Received: from snipe.mail.pas.earthlink.net (snipe.mail.pas.earthlink.net [207.217.120.62]) by hub.freebsd.org (Postfix) with ESMTP id 74CAF37B405 for ; Wed, 29 Aug 2001 10:58:55 -0700 (PDT) (envelope-from cjc@earthlink.net) Received: from blossom.cjclark.org (dialup-209.245.135.198.Dial1.SanJose1.Level3.net [209.245.135.198]) by snipe.mail.pas.earthlink.net (8.11.5/8.9.3) with ESMTP id f7THwrf10810; Wed, 29 Aug 2001 10:58:53 -0700 (PDT) Received: (from cjc@localhost) by blossom.cjclark.org (8.11.4/8.11.3) id f7THwke09781; Wed, 29 Aug 2001 10:58:46 -0700 (PDT) (envelope-from cjc) Date: Wed, 29 Aug 2001 10:58:45 -0700 From: "Crist J. Clark" To: Joel Rosenberg Cc: freebsd-questions@FreeBSD.ORG Subject: Re: Forwarding packets from the internal network Message-ID: <20010829105845.A9474@blossom.cjclark.org> Reply-To: cjclark@alum.mit.edu References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from thisisjoel@hotmail.com on Wed, Aug 29, 2001 at 04:15:19PM +0000 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Wed, Aug 29, 2001 at 04:15:19PM +0000, Joel Rosenberg wrote: > > > > >I believe what he is saying is that 192.168.1.21 is responding to > > > >port 80 requests with a src_port of 80 and not 81 which would not > > > >work. So if I understand correctly: > > > > > > > > 1) natd gets packet from outside world: > > > > > > > > SOURCE DESTINATION > > > > remote_IP:16675 --> your_nat_outside_IP:81 > > > > > > > > 2) natd changes packet to: > > > > > > > > SOURCE DESTINATION > > > > remote_IP:16675 --> 192.168.1.21:80 > > > > > > > > 3) Packet gets sent to 192.168.1.21 port 80 > > > > > > > > 4) 192.168.1.21 responds sending packet back to natd > > > > machine. > > > > > > > > 5) natd changes packet to: > > > > > > > > SOURCE DESTINATION > > > > your_nat_outside_IP:80 --> remote_IP:16675 > > > >That's not what natd(8) will do. It will change it to, > > > > SOURCE DESTINATION > > your_nat_outside_IP:81 --> remote_IP:16675 > > > > Yeah, that's what it should be doing, but I always end up getting a > connection to the other appliance, 192.168.1.20 after an initial login > prompt. If I'm inside the network, I can go to both fine. Have you run natd(8) with the '-v' option to figure out exactly what it is thinking during all of this? -- Crist J. Clark cjclark@alum.mit.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message