From owner-freebsd-ipfw@FreeBSD.ORG  Fri Apr  2 11:30:38 2004
Return-Path: <owner-freebsd-ipfw@FreeBSD.ORG>
Delivered-To: freebsd-ipfw@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 561A716A4CF
	for <freebsd-ipfw@freebsd.org>; Fri,  2 Apr 2004 11:30:38 -0800 (PST)
Received: from moutng.kundenserver.de (moutng.kundenserver.de
	[212.227.126.189])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 200D543D2D
	for <freebsd-ipfw@freebsd.org>; Fri,  2 Apr 2004 11:30:38 -0800 (PST)
	(envelope-from max@love2party.net)
Received: from [212.227.126.207] (helo=mrelayng.kundenserver.de)
	by moutng.kundenserver.de with esmtp (Exim 3.35 #1)
	id 1B9UNB-0002jf-00; Fri, 02 Apr 2004 21:30:37 +0200
Received: from [217.83.8.90] (helo=donor.laier.local)
	by mrelayng.kundenserver.de with asmtp (TLSv1:RC4-MD5:128)
	(Exim 3.35 #1)
	id 1B9UNA-00022t-00; Fri, 02 Apr 2004 21:30:37 +0200
From: Max Laier <max@love2party.net>
To: freebsd-ipfw@freebsd.org
Date: Fri, 2 Apr 2004 21:31:19 +0000
User-Agent: KMail/1.6.1
References: <20040402073338.26179.qmail@flock1.newmail.ru>
	<200404021751.i32Hpeud071280@chuck.bsdjpp.ath.cx>
In-Reply-To: <200404021751.i32Hpeud071280@chuck.bsdjpp.ath.cx>
MIME-Version: 1.0
Content-Disposition: inline
Content-Type: text/plain;
  charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
Message-Id: <200404022131.21654.max@love2party.net>
X-Provags-ID: kundenserver.de abuse@kundenserver.de
	auth:e28873fbe4dbe612ce62ab869898ff08
cc: igorpopov@newmail.ru
Subject: Re: natd and tun
X-BeenThere: freebsd-ipfw@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: IPFW Technical Discussions <freebsd-ipfw.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ipfw>
List-Post: <mailto:freebsd-ipfw@freebsd.org>
List-Help: <mailto:freebsd-ipfw-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 02 Apr 2004 19:30:38 -0000

On Friday 02 April 2004 17:51, Jean-Pierre PARISY wrote:
> On Fri, 02 Apr 2004 11:33:37 +0400, ????? ????? ?????????? wrote:
> >         Hi,
> > I have a question: would be natd work with tun device? I had already
> > asked this question when FreeBSD 5.2 were released
> > Someone have answered to me that I should use ppp builtin nat, because
> > divert sockets doesn't work with tun. Simple rules like this
> >         divert all from any to any via tun0
> >         allow all from any to any
> > did not work.
>
> I'm sure that this works:
>
> # Divert all packets through the tunnel interface.
> /sbin/ipfw add 100 divert natd all from any to any via tun0

Note that libalias was broken for a short time. See:
Message-Id: <200404021757.i32Hvv6R058197@repoman.freebsd.org>
or http://www.freebsd.org/cgi/cvsweb.cgi/src/lib/libalias/alias.c#rev1.42

-- 
Best regards,				| mlaier@freebsd.org
Max Laier				| ICQ #67774661
http://pf4freebsd.love2party.net/	| mlaier@EFnet