From owner-freebsd-ipfw@FreeBSD.ORG Fri Jun 26 08:54:50 2009 Return-Path: Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C30F71065677 for ; Fri, 26 Jun 2009 08:54:50 +0000 (UTC) (envelope-from holger.rauch@empic.de) Received: from ox.heitec.net (ox.heitec.net [93.93.253.50]) by mx1.freebsd.org (Postfix) with SMTP id 469658FC1D for ; Fri, 26 Jun 2009 08:54:49 +0000 (UTC) (envelope-from holger.rauch@empic.de) Received: from ox.heitec.net ([10.100.1.50]) by eSafe SMTP Relay 1245200454; Fri, 26 Jun 2009 10:54:48 +0200 Received: by ox.heitec.net (Postfix, from userid 110) id A88131A002; Fri, 26 Jun 2009 10:54:48 +0200 (CEST) Received: from siena.er.heitec.net (unknown [10.64.150.150]) by ox.heitec.net (Postfix) with ESMTPSA id A04EB1A001 for ; Fri, 26 Jun 2009 10:54:48 +0200 (CEST) Received: by siena.er.heitec.net (Postfix, from userid 1000) id E5E8D1E8B; Fri, 26 Jun 2009 10:55:30 +0200 (CEST) Date: Fri, 26 Jun 2009 10:55:30 +0200 From: Holger Rauch To: freebsd-ipfw@freebsd.org Message-ID: <20090626085530.GA2623@heitec.de> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="Q68bSM7Ycu6FN28Q" Content-Disposition: inline User-Agent: Mutt/1.5.18 (2008-05-17) Organization: EMPIC GmbH, Werner-von-Siemens-Str. 61, 91052 Erlangen, Germany, Reg. No: 2873 / Fuerth / Germany, CEO / Managing Director: Joerg K. Kottenbrink, WWW: http://www.empic.eu X-ESAFE-STATUS: [esafe] Mail clean X-ESAFE-DETAILS: [esafe] Subject: Any *Working* Examples of kernel-based (IPFW2-based) NAT onFreeBSD 7.1-STABLE? X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 26 Jun 2009 08:54:51 -0000 --Q68bSM7Ycu6FN28Q Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Hi, I'm having trouble setting up "hide NAT" (hiding several internal addresses "behind" an external one) and "1:1 NAT" (one certain external IP address for each corresponding internal one) on a FreeBSD 7.1-STABLE system (AMD64 architecture). My questions: - Does kernel-based (IPFW2-based) NAT work at all with FreeBSD 7.1-STABLE? - If so, can someone please provide some working examples? - In case it doesn't, do you recommend me to use user-space natd instaed? =20 - For user-space natd, it's probably best to run two instances like the natd man page suggests? =20 In case someone is interested in further details, please take a look at my previous message posted to this list: http://lists.freebsd.org/pipermail/freebsd-ipfw/2009-June/003909.html Thanks in advance for any advice! Kind regards, Holger --Q68bSM7Ycu6FN28Q Content-Type: application/pgp-signature; name="signature.asc" Content-Description: Digital signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iEYEARECAAYFAkpEjQIACgkQbiVtWpZdKQIEPACdH1RBy0AHvhYkVGWwDXJhfgo7 clsAnAqGbwzWj5OR1YX5hsJlndkwgrOS =g0FR -----END PGP SIGNATURE----- --Q68bSM7Ycu6FN28Q--