Date: Wed, 25 Apr 2001 14:09:35 -0400 From: Mikel <mikel@ocsinternet.com> To: "freebsd-questions@FreeBSD.ORG" <freebsd-questions@FreeBSD.ORG> Subject: ipfw, natd & telnet... Message-ID: <3AE712DF.DCD0E5C4@ocsinternet.com>
next in thread | raw e-mail | index | archive | help
<!doctype html public "-//w3c//dtd html 4.0 transitional//en"> <html> <body text="#000000" bgcolor="#D7D7FF" link="#0000EE" vlink="#551A8B" alink="#FF0000"> Hi all...I have a client that insists on using telnet to connect to their servers behind a fBSD firewall, running ipfw & natd of course...It works but I am experiencing a latency that well truthfully bothers me a bit. Even if I run in OPEN it still takes inordinate amount of time to connect. So obviously the client is less than pleased but are willing to live with the latency for now, but I can tell that they aren't exactly happy. <p>Ok so does anyone have any idea on how , or where, to look for possible drag points? <p>I know the following diagram is a bit lack luster but it should suffice. <p><tt>( inet )</tt> <br><tt> |</tt> <br><tt>[ fw x.x.x.n, x.x.x.a, x.x.x.b, x.x.x.c ]</tt> <br><tt> |</tt> <br><tt> +==+==+</tt> <br><tt> | | |</tt> <br><tt> | | [ Web y.y.y.a ]</tt> <br><tt> | |</tt> <br><tt> | |</tt> <br><tt> | [ db y.y.y.b ]</tt> <br><tt> |</tt> <br><tt> |</tt> <br><tt> [ apps y.y.y.c ]</tt> <p>rc.natd: <br> interface fxp0 <br> use_sockets <br> same_ports <br> redirect_address y.y.y.a x.x.x.a <br> redirect_address y.y.y.b x.x.x.b <br> redirect_address y.y.y.c x.x.x.c <p>also tried this instead, with no perceptible difference: <p> redirect_port tcp y.y.y.a:23 23 <br> redirect_port udp y.y.y.a:23 23 <br> <p>Remember the firewall is running OPEN right now and it does work; it's just very painfully slow. <p>Thanks in advance.... <p>Cheers, <br>Mikel </body> </html> To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3AE712DF.DCD0E5C4>