Skip site navigation (1)Skip section navigation (2)
Date:      Sun, 11 Apr 1999 08:46:10 -0400
From:      "Steven Vetzal" <svetzal@icom.ca>
To:        "'Jamie Norwood'" <mistwolf@ethereal.net>, <freebsd-net@FreeBSD.ORG>
Subject:   RE: NatD question
Message-ID:  <000001be8419$476fa320$7ffea8c0@blazer.pr1.on.wave.home.com>
In-Reply-To: <19990410203227.A23292@ethereal.net>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help
Hi Jamie,

You don't use rules to do that - just edit /etc/rc.conf to launch natd with
the additional flags

-redirect_address 10.166.54.57 208.166.54.57 -redirect_address 10.166.54.58
208.166.54.58

Steve


-----Original Message-----
From: owner-freebsd-net@FreeBSD.ORG
[mailto:owner-freebsd-net@FreeBSD.ORG]On Behalf Of Jamie Norwood
Sent: April 10, 1999 11:32 PM
To: freebsd-net@FreeBSD.ORG
Subject: NatD question


I have an odd(?) NatD setup I am tryin to implement but haven't been able
get it working or find adequate resources to help me figure it out.

I have a cable modem, and with it I am assigned 4 IPs. Now, as they
are not IPs I can subnet, and because I want some basic firewall functions
(Blocking NetBios, for instance.), I want to connect the cable modem
to my FreeBSD server, then connect a second NIC to a hub on which rests
2 other machines.

This part i have wokring ok. What I want, though, is for those two machines
to be accessible from the outside world as public IPs through transparent
translation on the FreeBSD box.

So what I have is:

  The Internet
       |
       |
/-------------\
| Cable Modem |
\-------------/
       |
       |
       \--------------------------------------\
                                              |
                                              |
                                      /---------------\
                                      | 208.166.54.56 |
                                      | 208.166.54.57 |
                                      | 208.166.54.58 |
                                      |               |
                                      |  10.166.54.56 |
                                      \---------------/
                                              |
                                           /-----\
                 /-------------------------| Hub |
                 |                         \-----/
          /--------------\                    |
          | 10.166.54.57 |                    |
          \--------------/                    |
                                       /--------------\
                                       | 10.166.54.58 |
                                       \--------------/

Where do I begin in writing the NatD rules that will allow packets destined
for 208.166.54.57 hit 10.166.54.57, and for machines on the internet to see
10.166.54.57 as 208.166.54.57 when sending packets back?

Thanks!

Jamie


--
-----BEGIN GEEK CODE BLOCK-----
Version: 3.1
GCS d- s+:+ a--(?) C++++ UB++++ P+ L--(++) E-- W++(--) N++ O?
K w(---) O?>+ M?>+ V PS+ PE+ Y+ PGP->++ t+(*) 5+++ X++ R++ tv+
b+ DI++++ D++ G e>+ h--- r+++ y+++**
------END GEEK CODE BLOCK------



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message




Want to link to this message? Use this URL: <http://docs.FreeBSD.org/cgi/mid.cgi?000001be8419$476fa320$7ffea8c0>