Date: Sat, 1 Feb 2014 19:47:08 +1100 (EST) From: Ian Smith <smithi@nimnet.asn.au> To: Michael Sierchio <kudzu@tenebras.com> Cc: Joshua Smith <juicewvu@gmail.com>, freebsd-questions@freebsd.org Subject: Re: Necessary to implement static NAT 1:1 Message-ID: <20140201194118.G99797@sola.nimnet.asn.au> In-Reply-To: <mailman.6090.1391033595.1398.freebsd-questions@freebsd.org> References: <mailman.6090.1391033595.1398.freebsd-questions@freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
In freebsd-questions Digest, Vol 504, Issue 5, Message: 31
On Wed, 29 Jan 2014 14:13:01 -0800 Michael Sierchio <kudzu@tenebras.com> wrote:
> On Wed, Jan 29, 2014 at 2:10 PM, Joshua Smith <juicewvu@gmail.com> wrote:
> > Just curious why one would use natd instead of the in kernel nat
> > available as either part of ipfw or pf.
>
> Kernel nat for ipfirewall requires a custom kernel (GENERIC does not
> have LIBALIAS).
Not so, Michael. From /etc/rc.d/ipfw
ipfw_prestart()
{
if checkyesno dummynet_enable; then
required_modules="$required_modules dummynet"
fi
if checkyesno natd_enable; then
required_modules="$required_modules ipdivert"
fi
if checkyesno firewall_nat_enable; then
required_modules="$required_modules ipfw_nat"
fi
}
ipfw_nat.ko is compiled with libalias, and works fine with GENERIC.
cheers, Ian
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20140201194118.G99797>