From owner-freebsd-net Mon Mar 22 8: 9:55 1999 Delivered-To: freebsd-net@freebsd.org Received: from mail.dynamixweb.com (host01.dynamixweb.com [209.47.109.194]) by hub.freebsd.org (Postfix) with ESMTP id 05D001511A for ; Mon, 22 Mar 1999 08:09:49 -0800 (PST) (envelope-from svetzal@icom.ca) Received: from blazer (cr609409-a.pr1.on.wave.home.com [24.112.98.34]) by mail.dynamixweb.com with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2232.9) id H2VCMAJG; Sun, 21 Mar 1999 09:14:03 -0500 From: "Steven Vetzal" To: Subject: RE: natd and ipmasq Date: Sun, 21 Mar 1999 09:11:45 -0500 Message-ID: <000001be73a4$c15422e0$7ffea8c0@blazer.pr1.on.wave.home.com> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook 8.5, Build 4.71.2173.0 In-Reply-To: X-MimeOLE: Produced By Microsoft MimeOLE V4.72.2106.4 Importance: Normal Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > what's the difference between NATD dan ipmasquerading on LInux ? > i thought that was the same.. is that true ? I won't go much into natd vs. IP Masquerading, I see a couple people beat me to the punch, but... I wondered often about the functional differences between the two for quite some time until I ran across someone running IP Masquerading on Linux (haven't had the time to swap my gateway at home from FreeBSD to Linux to check it out). After looking into it, I discovered a few things. Mainly, the core IP masquerading function in Linux seems to require several patches to allow things like ping and traceroute to work through the gateway, whereas on FreeBSD these things have been rolled into the core natd process. In fact, recently on this list Ari was kind enough to point me towards the natd development site, where I successfully compiled natd 2.0beta to allow GRE (a tunnelling protocol) to also work through the FreeBSD gateway I'm using. Again, to do this on Linux required either a couple patches and a proxy program, or other wierdness. Basically, as I've always found, FreeBSD has proven to be a far more straightforward and stable platform for many purposes, firewalling and such. I've been running it at home for about a year now on my cablemodem, and it's been awesome. Best of all, I didn't have to spend $40K on a Cisco PIX 8^) But I did know how to do PPTP through Linux IPMasquerading long before I found out how to do PPTP through FreeBSD natd 8^) Steve To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message