From owner-freebsd-hackers Mon Dec 8 09:39:37 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id JAA23032 for hackers-outgoing; Mon, 8 Dec 1997 09:39:37 -0800 (PST) (envelope-from owner-freebsd-hackers) Received: from anlsun.ebr.anlw.anl.gov (anlsun.ebr.anlw.anl.gov [141.221.1.2]) by hub.freebsd.org (8.8.7/8.8.7) with SMTP id JAA22986 for ; Mon, 8 Dec 1997 09:38:58 -0800 (PST) (envelope-from cmott@srv.net) Received: from darkstar.home (ras515.srv.net [205.180.127.15]) by anlsun.ebr.anlw.anl.gov (8.6.11/8.6.11) with SMTP id KAA11495; Mon, 8 Dec 1997 10:38:25 -0700 Date: Mon, 8 Dec 1997 10:37:46 -0700 (MST) From: Charles Mott X-Sender: cmott@darkstar.home Reply-To: Charles Mott To: Valter Mazzaro cc: hackers@FreeBSD.ORG Subject: Re: natd settings problem In-Reply-To: <199712081643.RAA05250@kk660.kk.etx.ericsson.se> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-hackers@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Mon, 8 Dec 1997, Valter Mazzaro wrote: > My purpose is to run a video conference application (vic) between HOST1/2 and > ISP. > In AS a natd daemon is running. The problem is that, with the present settings, > I've succeeded in running vic just between ISP and ONE host AT THE TIME!! [snip] > permanent_link udp 192.168.104.10:4444 193.10.15.157:0 4444 > permanent_link udp 192.168.104.10:4445 193.10.15.157:0 4445 > > Vic uses 4444 and 4445 as known ports to establish the connession and to > exchange data. With this conf file I don't have any problem in let HOST1 > and ISP interact. > > If I try to connect also HOST2, adding in the natd.conf: > > permanent_link udp 192.168.104.11:4444 193.10.15.157:0 4444 > permanent_link udp 192.168.104.11:4445 193.10.15.157:0 4445 The problem is that you cannot simultaneously redirect a single port on the aliasing host to two distinct machines (192.168.104.10 and .11). Now, if you had two registered addresses for your natd box (perhaps 193.10.15.155 and .156), it would be possible to do something like redirect_port 192.168.104.10:4444 193.10.15.155:4444 193.10.15.157:0 redirect_port 192.168.104.10:4445 193.10.15.155:4445 193.10.15.157:0 redirect_port 192.168.104.11:4444 193.10.15.156:4444 193.10.15.157:0 redirect_port 192.168.104.11:4445 193.10.15.156:4445 193.10.15.157:0 I don't know that you can get two registered IP addresses, so this probably isn't too useful to you. The problem is that when you redirect the same address/port combination to more than one machine, only the last machine you designated gets the traffic. It might be possible to add a internal broadcast function to natd so that video conferencing would work. I seem to remember there is broadcast support in the UDP protocol, so may be the packet aliasing engine used by natd could take this into account. Charles Mott