Skip site navigation (1)Skip section navigation (2) 
Date:      Sun, 6 Feb 2005 14:01:52 +0100
From:      Hexren <me@hexren.net>
To:        Chris Knipe <savage@savage.za.org>
Cc:        freebsd-questions@freebsd.org
Subject:   Re[2]: ipfw / ppp NAT
Message-ID:  <797811732.20050206140152@hexren.net>
In-Reply-To: <003001c50c49$48261b50$0a01a8c0@ops.cenergynetworks.com>
References:  <001a01c50c48$a63ab0d0$0a01a8c0@ops.cenergynetworks.com> <003001c50c49$48261b50$0a01a8c0@ops.cenergynetworks.com>
next in thread | previous in thread | raw e-mail | index | archive | help 
CK> Ok wait,

CK> let me explain a bit more, because it seems the source-address is not my 
CK> problem.


y.y ->> x.x -> x.1

CK> y.y is a IP from the Internet
CK> x.x is the FreeBSD gateway, and
CK> x.1 is a client on a internal network

CK> I run NAT (via ipfw / ppp) on x.x.  The packet comes in from y.y, via x.x, 
CK> to x.1, HOWEVER, the source-address of the packet ariving at x.1 is still 
CK> y.y.  I want the source address of the packet ariving at x.1 to be x.x, and 
CK> not y.y

CK> --
CK> Chris.



CK> ----- Original Message ----- 
CK> From: "Chris Knipe" <savage@savage.za.org>
CK> To: <freebsd-questions@freebsd.org>
CK> Sent: Sunday, February 06, 2005 2:37 PM
CK> Subject: ipfw / ppp NAT


>> Hi,
>>
>> Is there any way that I can get / configure ipfw / Kernel PPP to rewrite 
>> the source address via NAT?
>>
>> --
>> Chris.
>> _______________________________________________
>> freebsd-questions@freebsd.org mailing list
>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
>> To unsubscribe, send any mail to 
>> "freebsd-questions-unsubscribe@freebsd.org"
>> 

CK> _______________________________________________
CK> freebsd-questions@freebsd.org mailing list
CK> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
CK> To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"

---------------------------------------------

given that tun0 is the interface that connects x.x to the world (y.y)
then what you have now would be:
"ipfw add divert natd all from any to any via tun0"

from what I understand what you want you should probably add somethin
like:
"ipfw add divert natd all from any to any via rl0"
rl0 being the interface connecting x.x to x.1

on related news, why would u want to do something like that ?

Hexren

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?797811732.20050206140152>