From owner-freebsd-ipfw@FreeBSD.ORG  Sat Oct  1 10:13:42 2005
Return-Path: <owner-freebsd-ipfw@FreeBSD.ORG>
X-Original-To: freebsd-ipfw@freebsd.org
Delivered-To: freebsd-ipfw@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 48FB616A420;
	Sat,  1 Oct 2005 10:13:42 +0000 (GMT)
	(envelope-from bsd@roamingsolutions.net)
Received: from basillia.speedxs.net (basillia.speedxs.net [83.98.255.13])
	by mx1.FreeBSD.org (Postfix) with ESMTP id A97B843D48;
	Sat,  1 Oct 2005 10:13:41 +0000 (GMT)
	(envelope-from bsd@roamingsolutions.net)
Received: from ongers.net (ongers.speedxs.nl [83.98.237.210])
	by basillia.speedxs.net (Postfix) with ESMTP id 783DC3D015;
	Sat,  1 Oct 2005 12:02:11 +0200 (CEST)
Received: from (66.110.35.16 [66.110.35.16]) by MailEnable Inbound Mail Agent
	with ESMTP; Sat, 01 Oct 2005 12:18:39 +0200
Message-ID: <433E6135.3020005@roamingsolutions.net>
Date: Sat, 01 Oct 2005 12:13:09 +0200
From: G Bryant <bsd@roamingsolutions.net>
User-Agent: Mozilla Thunderbird 0.9 (Windows/20041103)
X-Accept-Language: en-us, en
References: <1128160000.491736.7049.nullmailer@cicuta.babolo.ru>
In-Reply-To: <1128160000.491736.7049.nullmailer@cicuta.babolo.ru>
Content-Transfer-Encoding: 7bit
MIME-Version: 1.0
Content-Type: text/plain; charset="ISO-8859-1"
X-Content-Filtered-By: Mailman/MimeDel 2.1.5
Cc: FreeBSD <freebsd-ipfw@freebsd.org>, FreeBSD <freebsd-net@freebsd.org>
Subject: Re: alias ip and natd with ipfw fwd
X-BeenThere: freebsd-ipfw@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: IPFW Technical Discussions <freebsd-ipfw.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ipfw>
List-Post: <mailto:freebsd-ipfw@freebsd.org>
List-Help: <mailto:freebsd-ipfw-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 01 Oct 2005 10:13:42 -0000


   # ifconfig -a
   rl0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
       options=8<VLAN_MTU>
       inet 192.168.8.70 netmask 0xffffff00 broadcast 192.168.8.255
       inet 192.168.0.99 netmask 0xffffff00 broadcast 192.168.0.255
       ether 00:11:95:5a:e2:da
       media: Ethernet autoselect (100baseTX <full-duplex>)
       status: active
   rl1: flags=8802<BROADCAST,SIMPLEX,MULTICAST> mtu 1500
       options=8<VLAN_MTU>
       ether 00:11:95:5a:e2:dc
       media: Ethernet autoselect (10baseT/UTP)
       status: no carrier
   vr0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu
   1500
       inet 192.168.1.1 netmask 0xffffff00 broadcast 192.168.1.255
       ether 00:11:09:08:11:c4
       media: Ethernet autoselect (none)
       status: no carrier
   plip0: flags=108810<POINTOPOINT,SIMPLEX,MULTICAST> mtu 1500
   lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
       inet 127.0.0.1 netmask 0xff000000
   # ipfw show
   00100   0     0 allow ip from any to any via lo0
   00200   0     0 allow ip from 192.168.1.0/24 to any in
   00300   0     0 allow ip from any to 192.168.1.0/24 out
   00400 184 16728 allow ip from 192.168.0.0/16 to me in
   00500 173 14810 allow ip from me to 192.168.0.0/16 out
   08000   0     0 divert 8672 ip from any to 192.168.0.0/24 out
   08100   0     0 allow ip from me to 192.168.0.0/24 out
   08200   0     0 divert 8671 ip from any to 192.168.8.0/24 out
   08300   0     0 allow ip from me to 192.168.8.0/24 out
   09000   0     0 divert 8672 ip from any to 196.4.160.7 out
   09100   0     0 check-state
   09200   0     0 fwd 192.168.0.1 log logamount 10 ip from 192.168.0.99
   to any out keep-state
   09300   9   629 divert 8671 ip from any to any out
   09400   9   629 allow ip from me to any out via rl0
   09500   0     0 allow ip from any to any out
   09600   0     0 divert 8672 ip from any to 192.168.0.99 in via rl0
   09700   7  1123 divert 8671 ip from any to 192.168.8.70 in via rl0
   09800  42  4241 allow ip from any to any in via rl0
   09900   0     0 allow ip from any to any in via rl0
   09999   0     0 deny log logamount 10 ip from any to any
   65535   0     0 deny ip from any to any
   ##  was testing the divert by pinging 196.4.160.7
   # natd1.conf
   alias_address 192.168.8.70
   pid_file /var/run/natd1.pid
   port natd1
   # natd2.conf
   alias_address 192.168.0.99
   pid_file /var/run/natd2.pid
   port natd2
   "."@babolo.ru wrote:

Can anybody please help with problem.
Using natd and ipfw and trying to fwd packets to a non-default router 
out the same interface.
Currently using alias for the second ip, but it doesn't seem to be 
working for some some reason I'm missing. Would clone maybe work?
Any advice would be appreciated.
    

ipfw rules, ifconfig -a and natd options need
to be demonstrated.
_______________________________________________
[1]freebsd-net@freebsd.org mailing list
[2]http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to [3]"freebsd-net-unsubscribe@freebsd.org"

References

   1. mailto:freebsd-net@freebsd.org
   2. http://lists.freebsd.org/mailman/listinfo/freebsd-net
   3. mailto:freebsd-net-unsubscribe@freebsd.org