Skip site navigation (1)Skip section navigation (2) 
Date:      Mon, 10 Jan 2000 01:44:22 -0500 (EST)
From:      "Crist J. Clark" <cjc@cc942873-a.ewndsr1.nj.home.com>
To:        marc@tandem.milestonerdl.com (marc rassbach)
Cc:        freebsd-questions@FreeBSD.ORG
Subject:   Re: 2 port ethernet NAT question
Message-ID:  <200001100644.BAA02813@cc942873-a.ewndsr1.nj.home.com>
In-Reply-To: <Pine.BSF.4.21.0001092311400.66548-100000@tandem.milestonerdl.com> from marc rassbach at "Jan 9, 2000 11:13:10 pm"
next in thread | previous in thread | raw e-mail | index | archive | help 
marc rassbach wrote,
> I am having trouble making this network NAT config
> to work.
> 
> I m looking to take the next address 204.204.204.205 
> to be xlated to the 192.168.10.28 machine, both 
> incoming and outgoing.  
> 
> I ve gotten the 192.168.10.28 box to NAT out.  As
> soon as tried the redirect_address, the ability for 
> 10.28 to see the freebsd box and the net goes out
> the window.
>  
> I ve tried adding and not adding the alias to de0 of
> 204.204.204.205. 
> 
> 
> 204.204.204.204                       192.168.10.1
>                    +---------+
>       Net----de0---& FreeBSD &--pn0--internal
>                    +---------+
> 
> Natd.conf looks like
> 
> log
> log_denied
> verbose
> unregistered_only
> interface pn0
> interface de0
> #redirect_address 204.204.204.205 192.168.10.28

Well, first off, you have your addresses flipped. It should be,

redirect_address 192.168.10.28 204.204.204.205

This is probably why everything grinds to a stop.

> And ipfw show looks like
> 
> 00100      0         0 allow ip from any to any via lo0
> 00200      2        77 deny ip from any to 127.0.0.0/8
> 00210 472601 292624231 divert 8668 ip from any to any via
> pn0
> 00210 473519 292659782 divert 8668 ip from any to any via
> de0

Why not just do a,

# ipfw add 300 divert 8668 ip from any to any

Why a rule for each interface?

> 60000 946067 585279389 allow ip from any to any
> 65000     72      7029 allow ip from any to any
-- 
Crist J. Clark                           cjclark@home.com


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200001100644.BAA02813>