Date: Mon, 13 Jan 1997 16:18:34 -0600 (CST) From: Mark Tinguely <tinguely@plains.nodak.edu> To: avalon@coombs.anu.edu.au Cc: brian@awfulhak.demon.co.uk, chris@mail.bb.cc.wa.us, hackers@FreeBSD.org Subject: Re: IPFILTER Message-ID: <199701132218.QAA13145@plains.nodak.edu>
next in thread | raw e-mail | index | archive | help
> ICMP is now (but it doesn't rewrite the headers in error packets). good. > > Also, to get a successful remapping for IP application, be sure that you > > turned on the IP forwarding on the NAT host (ie: > > > > sysctl -w net.inet.ip.forwarding=1 > > > > ). > > even better, for things like ftp which have address data in the TCP stream, > use a proxy. net.inet.ip.forwarding tells FreeBSD it is a IP router and that it should forward packets from one interface to another. NAT translates the IP packet but FreeBSD will eat the translate packet unless told to forward it. --mark.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199701132218.QAA13145>