From owner-freebsd-stable Wed Feb 13 5:52: 3 2002 Delivered-To: freebsd-stable@freebsd.org Received: from point.osg.gov.bc.ca (point.osg.gov.bc.ca [142.32.102.44]) by hub.freebsd.org (Postfix) with ESMTP id 2EA0D37B41C for ; Wed, 13 Feb 2002 05:52:00 -0800 (PST) Received: (from daemon@localhost) by point.osg.gov.bc.ca (8.8.7/8.8.8) id FAA09523; Wed, 13 Feb 2002 05:51:42 -0800 Received: from passer.osg.gov.bc.ca(142.32.110.29) via SMTP by point.osg.gov.bc.ca, id smtpda09521; Wed Feb 13 05:51:33 2002 Received: (from uucp@localhost) by passer.osg.gov.bc.ca (8.11.6/8.9.1) id g1DDpRl67954; Wed, 13 Feb 2002 05:51:27 -0800 (PST) Received: from UNKNOWN(10.1.2.1), claiming to be "cwsys.cwsent.com" via SMTP by passer9.cwsent.com, id smtpdk67932; Wed Feb 13 05:51:05 2002 Received: (from uucp@localhost) by cwsys.cwsent.com (8.11.6/8.9.1) id g1DDp5Z93780; Wed, 13 Feb 2002 05:51:05 -0800 (PST) Message-Id: <200202131351.g1DDp5Z93780@cwsys.cwsent.com> Received: from localhost.cwsent.com(127.0.0.1), claiming to be "cwsys" via SMTP by localhost.cwsent.com, id smtpdJ93770; Wed Feb 13 05:50:45 2002 X-Mailer: exmh version 2.5 07/13/2001 with nmh-1.0.4 Reply-To: Cy Schubert - CITS Open Systems Group From: Cy Schubert - CITS Open Systems Group X-Sender: schubert To: "John Davies" Cc: stable@FreeBSD.ORG Subject: Re: dropping 127.* on the floor In-Reply-To: Message from "John Davies" of "Wed, 13 Feb 2002 23:22:07 +1100." <006201c1b489$0ddad910$0a00a8c0@john> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Wed, 13 Feb 2002 05:50:45 -0800 Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG In message <006201c1b489$0ddad910$0a00a8c0@john>, "John Davies" writes: > I've noticed since updating to 4.5-STABLE that my previously working rule in > /etc/ipnat.rules has seemed to stop working, with the redirect rule i was > using to use squid as a transparent proxy, the packet no longer makes it to > squid and i therefore can't browse unless i comment the redirect out and > restart ipnat. Anyone that can offer any suggestions, would be greatly > apreiciated. > > My /etc/ipnat.rules if it helps.. > map fxp0 192.168.0.0/24 -> 0.0.0.0/32 proxy port 21 ftp/tcp > map fxp0 192.168.0.0/24 -> 0.0.0.0/32 > rdr fxp1 0/0 port 80 -> 127.0.0.1 port 8080 tcp <- that rule Replace the last rule with: rdr fxp1 0/0 port 80 -> ONE_OF_YOUR_INTERFACE_IPS port 8080 tcp On my firewall here at home I use the interface IP of my internal interface because my external interface uses a DHCP assigned address from the local cable company. -- Regards, Phone: (250)387-8437 Cy Schubert Fax: (250)387-5766 Team Leader, Sun/Alpha Team Email: Cy.Schubert@osg.gov.bc.ca Open Systems Group, CITS Ministry of Management Services Province of BC FreeBSD UNIX: cy@FreeBSD.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message