From owner-freebsd-ipfw@FreeBSD.ORG  Wed Jan  3 23:01:38 2007
Return-Path: <owner-freebsd-ipfw@FreeBSD.ORG>
X-Original-To: freebsd-ipfw@freebsd.org
Delivered-To: freebsd-ipfw@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 4488616A407
	for <freebsd-ipfw@freebsd.org>; Wed,  3 Jan 2007 23:01:38 +0000 (UTC)
	(envelope-from adam.egan@gmail.com)
Received: from ug-out-1314.google.com (ug-out-1314.google.com [66.249.92.175])
	by mx1.freebsd.org (Postfix) with ESMTP id D752F13C43E
	for <freebsd-ipfw@freebsd.org>; Wed,  3 Jan 2007 23:01:37 +0000 (UTC)
	(envelope-from adam.egan@gmail.com)
Received: by ug-out-1314.google.com with SMTP id o2so4703396uge
	for <freebsd-ipfw@freebsd.org>; Wed, 03 Jan 2007 15:01:36 -0800 (PST)
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com;
	h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition;
	b=BIkh2ma1MGZ1WSGSsnfi6e7a4OO4W2e+f8K/BwyKU30LGaYS2uYQdnReKhWSkRvEfYHz9SjW4VmKv/2UShu6Tpr7oL9gvLKOih5HDVz/22cPWrX2+h/GD3Af2j4WMk4Vvrsh4H1XgcDQMRCt8y9nIceEXgSIvsiOJHNUnWLBrhc=
Received: by 10.78.204.7 with SMTP id b7mr2369671hug.1167863783257;
	Wed, 03 Jan 2007 14:36:23 -0800 (PST)
Received: by 10.78.165.3 with HTTP; Wed, 3 Jan 2007 14:36:23 -0800 (PST)
Message-ID: <28745bbf0701031436r3457c0edr88d8fc50ea3e50b5@mail.gmail.com>
Date: Wed, 3 Jan 2007 22:36:23 +0000
From: "Adam Egan" <adam.egan@gmail.com>
To: freebsd-ipfw@freebsd.org
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
Subject: problems with port forwarding
X-BeenThere: freebsd-ipfw@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: IPFW Technical Discussions <freebsd-ipfw.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ipfw>
List-Post: <mailto:freebsd-ipfw@freebsd.org>
List-Help: <mailto:freebsd-ipfw-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 03 Jan 2007 23:01:38 -0000

Ok having some problems with port forwarding here, wondered if anyone
could tell me if they see anything wrong, or have any ideas?

/* ipfw rules for natd */
add 01005 divert natd all from any to any in via sis0
add 01010 check-state

/* Allow for access to web server (unless specified like this, packets
are denied) */
add 01015 allow tcp from any to 192.168.0.0/24 dst-port 80 in via sis0
setup keep-state

/* Port redirect line in natd.conf */
redirect_port tcp 192.168.0.5:80 80

when I do ipfw show.. the figures next to the apache ipfw rule
change.. so i think it does activate that rule, as packet numbers
change.. but when i try to access my web server, the connection times
out. There are no entries into the apache-access/error logs.

Thanks in advance!

Adam