Date: Mon, 10 Nov 2014 06:59:44 -0800 From: Michael Sierchio <kudzu@tenebras.com> To: Gary Aitken <vagabond@blackfoot.net> Cc: Ian Smith <smithi@nimnet.asn.au>, FreeBSD Questions <freebsd-questions@freebsd.org> Subject: Re: natd not translating? Message-ID: <CAHu1Y70nO%2BRRG%2BoFx3FkSBqWeJLmU_gCPY2S9EG_E62cu4-3dw@mail.gmail.com> In-Reply-To: <7fe88aca6228abad2e4ce66abaf42893.squirrel@webmail.blackfoot.net> References: <7fe88aca6228abad2e4ce66abaf42893.squirrel@webmail.blackfoot.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, Nov 6, 2014 at 5:03 PM, Gary Aitken <vagabond@blackfoot.net> wrote: > > I have a non-gateway ip addr reserved for use by natd, and currently have > divert 8668 ip from any to any via ep0 > You almost certainly don't want to do that - each packet not destined for the current host will get diverted twice. You want something like this divert 8668 ip from any to any in recv ep0 divert 8668 ip from any to any out xmit ep0 as separate rules. I use kernel nat, but typical nat inbound traffic before the rules and outbound after. - M
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAHu1Y70nO%2BRRG%2BoFx3FkSBqWeJLmU_gCPY2S9EG_E62cu4-3dw>