Date: Fri, 9 Mar 2001 21:14:36 -0600 From: Andrew Hesford <ajh3@chmod.ath.cx> To: "G. Jason Middleton" <gmiddl1@gl.umbc.edu> Cc: freebsd-questions@freebsd.org Subject: Re: NAT without a firewall. Message-ID: <20010309211436.A564@cec.wustl.edu> In-Reply-To: <Pine.LNX.4.31L.02.0103092206200.9187-100000@linux3.gl.umbc.edu>; from gmiddl1@gl.umbc.edu on Fri, Mar 09, 2001 at 10:07:29PM -0500 References: <Pine.LNX.4.31L.02.0103092206200.9187-100000@linux3.gl.umbc.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
Well, you don't need a physical firewall, if that's what you're asking. However, you do need ipfirewall built into your kernel. Just starting natd will do nothing, because packets won't go looking for it on port 8668 if they aren't told to. Therefore, you need to use ipfw to establish a rule to divert all packets to port 8668 (aliased to 'natd' in /etc/services) as they come in on an interface. This is accomplished by adding the following rule: ipfw add divert natd ip from any to any On Fri, Mar 09, 2001 at 10:07:29PM -0500, G. Jason Middleton wrote: > Can i run natd without firewall ? I see all these instructions for > running a firewall and natd together. What options do i need in the > kernel and rc.conf just to run natd? -- Andrew Hesford ajh3@chmod.ath.cx To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010309211436.A564>