Date: Tue, 11 Aug 1998 15:38:59 -0700 (PDT) From: Julian Elischer <julian@whistle.com> To: Dan Langille <junkmale@xtra.co.nz> Cc: FreeBSD Questions <freebsd-questions@FreeBSD.ORG> Subject: Re: ipfw and natd Message-ID: <Pine.BSF.3.95.980811153826.29188A-100000@current1.whistle.com> In-Reply-To: <199808110904.VAA25925@cyclops.xtra.co.nz>
next in thread | previous in thread | raw e-mail | index | archive | help
it should be as early as possible.. this will make a difference to the way it works in 3.0 julian On Tue, 11 Aug 1998, Dan Langille wrote: > I'm using ifpw and natd. In order for natd to work, the following rule > must be present somewhere within the ipfw rules. > > divert natd ip from any to any via ed0 > > (or whatever your external nic is if it's not ed0). > > Where should that rule be placed in relationship to other rules? At the > top, at the bottom? > > I used to have it as the last rule (before the deny all rule). But an > example I just found > (http://www.metronet.com/~pgilley/freebsd/ipfw/ben2.html) has this rule at > the top. > > I'm confused. I thought you'd want to disallow stuff before allowing the > natd stuff. Or am I mucked up? > > -- > Dan Langille > DVL Software Limited > http://www.dvl-software.com/freebsd : my [mis]adventures > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.95.980811153826.29188A-100000>