Date: Wed, 9 Aug 2000 15:34:02 -0600 (MDT) From: Nick Rogness <nick@rapidnet.com> To: TeRrAc <terrac@cloudfactory.org> Cc: FreeBSD IPFW list <freebsd-ipfw@FreeBSD.ORG> Subject: Re: natd + IPFW Message-ID: <Pine.BSF.4.21.0008091521270.28622-100000@rapidnet.com> In-Reply-To: <Pine.LNX.4.21.0008091410360.8666-100000@stratus.cloudfactory.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 9 Aug 2000, TeRrAc wrote: > I am sorry. Yes I had done this, however in composing the mail I copied > straight fromteh natd man page. > > If I were to build a custom rc.firewall script to do this job would it > need more than: > --- > flush > divert natd all from any to any via fxp1 > allow ip from any to any > allow icmp from any to any > --- Is natd running? # ps -auxww |grep natd|grep -v grep What does your firewall rules look like? # ipfw -a l > ? > Also, would forwarding keep packets from getting routed back to the > source? Or are they possibly getting stopped before they reach their > destination? No, unless you are using forwarding within the firewall. > > On Wed, 9 Aug 2000, Nick Rogness wrote: > > > On Wed, 9 Aug 2000, TeRrAc wrote: > > > > > > > > I have also tried using the IPFW commands; > > > /sbin/ipfw -f flush > > > /sbin/ipfw add divert natd all from any to any via ed0 > > ^^^^^ > > Should be outside interface > > > > /sbin/ipfw add divert natd all from any to any via fxp1 > > > > Nick Rogness - Drive defensively. Buy a tank. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0008091521270.28622-100000>