Date: Mon, 2 Jan 2006 15:11:56 -0800 From: perikillo <perikillo@gmail.com> To: freebsd-questions@freebsd.org Subject: Re: ipnat -CF -f /etc/ipnat.rules Message-ID: <51d7a5160601021511m23e82acn3c3fecd94895d030@mail.gmail.com> In-Reply-To: <MIEPLLIBMLEEABPDBIEGIEONHKAA.fbsd_user@a1poweruser.com> References: <20051231130326.D699@nebuchadnezzar.my.domain> <MIEPLLIBMLEEABPDBIEGIEONHKAA.fbsd_user@a1poweruser.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 1/2/06, fbsd_user <fbsd_user@a1poweruser.com> wrote: > I see "tun" in your ipnat rule. > That means you are using ppp for phone dialup connection. > Every time you lose your phone connection you get different IP from > your ISP. > Use NAT function of PPP and not ipnat and your problem will go away. > > -----Original Message----- > From: owner-freebsd-questions@freebsd.org > [mailto:owner-freebsd-questions@freebsd.org]On Behalf Of caleb > Sent: Friday, December 30, 2005 9:16 PM > To: freebsd-questions@freebsd.org > Subject: ipnat -CF -f /etc/ipnat.rules > > > Hi everyone, > I have just put together a router/firewall using 5.4 > RELEASE > and IPFILTER. Everything is working fine except I have to manually > flush > the NAT table every time the router boots. below is my rc.conf and > ipnat.rules, I have used rc.conf to start everything at boot; > > /* rc.conf */ > > gateway_enable=3D"YES" > sshd_enable=3D"YES" > ifconfig_rl1=3D"inet 10.0.0.1 netmask 255.255.255.0" > ifconfig_rl0=3D"inet 192.168.0.1 netmask 255.255.255.0" > hostname=3D"tweak" > ipfilter_enable=3D"YES" > ipfilter_rules=3D"/etc/ipf.rules" > ipmon_enable=3D"YES" > ipmon_flags=3D"-Ds" > ipnat_enable=3D"YES" > ipnat_rules=3D"/etc/ipnat.rules" > ppp_enable=3D"YES" > ppp_mode=3D"ddial" > ppp_nat=3D"NO" > ppp_profile=3D"netspace" > ppp_user=3D"root" > > /* ipnat.rules */ > > map tun0 192.168.0.0/24 -> 0/32 > > > Is there something I am missing? I do not think it is ipf, as I have > configured it to allow everything in and out. Could you please CC me > if > you decide to help. > > Thankyou, > > caleb > -- > There is no spoon > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.o= rg" Well i use PPPoE protocol, i have never try the same ppp program to handle the NAT thing, them i disable ipnat or what...? I need to understand this very clear. Thanks for your tip.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?51d7a5160601021511m23e82acn3c3fecd94895d030>