Date: Mon, 10 Jul 2000 16:48:09 -0700 (PDT) From: Doug White <dwhite@resnet.uoregon.edu> To: Colin <cwass99@home.com> Cc: freebsd-stable@FreeBSD.ORG Subject: Re: natd inconsistencies Message-ID: <Pine.BSF.4.21.0007101647360.23759-100000@resnet.uoregon.edu> In-Reply-To: <XFMail.000710192636.cwass99@home.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 10 Jul 2000, Colin wrote: > I found this rule was the problem using ipfw show (a very useful command > when you're building a ruleset to see what is blocking you) which is why I > moved it. My concern is that it shouldn't block packets from an external > source (eg www.FreeBSD.org ;) to 192.168.0.0/24. It should only block packets > from that network incoming on the external interface. I understood natd would > alter the dest addr on the inbound packet if it was in the table but not touch > the source addr. Is this not the case? Or am I missing something obvious in > the operation? Don't forget about the return packets :) Doug White | FreeBSD: The Power to Serve dwhite@resnet.uoregon.edu | www.FreeBSD.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0007101647360.23759-100000>