From owner-freebsd-questions@FreeBSD.ORG Mon Apr 27 22:08:07 2015 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id C6992B28 for ; Mon, 27 Apr 2015 22:08:07 +0000 (UTC) Received: from bs1.fjl.org.uk (bs1.fjl.org.uk [84.45.41.196]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client CN "bs1.fjl.org.uk", Issuer "bs1.fjl.org.uk" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 666231504 for ; Mon, 27 Apr 2015 22:08:07 +0000 (UTC) Received: from [192.168.1.35] (host86-132-232-69.range86-132.btcentralplus.com [86.132.232.69]) (authenticated bits=0) by bs1.fjl.org.uk (8.14.4/8.14.4) with ESMTP id t3RM7d55013137 (version=TLSv1/SSLv3 cipher=DHE-DSS-AES128-SHA bits=128 verify=NO) for ; Mon, 27 Apr 2015 23:07:44 +0100 (BST) (envelope-from frank2@fjl.co.uk) Message-ID: <553EB32A.6040702@fjl.co.uk> Date: Mon, 27 Apr 2015 23:07:38 +0100 From: Frank Leonhardt User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:31.0) Gecko/20100101 Thunderbird/31.6.0 MIME-Version: 1.0 To: freebsd-questions@freebsd.org Subject: Re: ipfw, natd and a server on a second WAN address References: <553E95EF.8050002@fjl.co.uk> In-Reply-To: <553E95EF.8050002@fjl.co.uk> Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 7bit X-Content-Filtered-By: Mailman/MimeDel 2.1.20 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 27 Apr 2015 22:08:07 -0000 On 27/04/2015 21:02, Frank Leonhardt wrote: > I hope someone will *know* how to do this. I can guess, but if I guess > wrong there'll be consequences... I've just looked at the *latest* man page, and there's a section on MULTIPLE INSTANCES that wasn't there before (it turns out it was added in release 8.0). This might be my answer, except that the -instance option was added at the same time, and the router is on 7.x :-( It does say that before -instance was added, the way to do this was running more than one natd, which I suspected anyway.