Date: Sun, 23 Sep 2001 00:41:52 -0500 From: "SNF" <snf_lists@yahoo.com> To: "Freebsd-Questions" <freebsd-questions@FreeBSD.ORG> Subject: How can I see if redirect_port for natd is actually set up? Message-ID: <LOBBKFILCMGGNDCBBCELOEPMECAA.snf_lists@yahoo.com>
next in thread | raw e-mail | index | archive | help
I am trying to get the redirect_port option for natd to do the following: redirect_port tcp 10.10.20.40:25 25 and on the firewall, the following rules are set up to specifically allow connections to port 25: (all of these are logged - ep0 is the external interface and xl0 is the internal interface) allow tcp from any to any 25 setup allow tcp from any to 10.10.20.40 25 in recv ep0 setup allow tcp from any to 24.159.225.122 25 in recv ep0 setup allow tcp from 10.10.20.40 25 to any established allow tcp from any to 10.10.20.40 25 established allow tcp from 24.159.225.122 25 to any established allow tcp from any to 24.159.225.122 25 established if I do a direct telnet to port 25 on 10.10.20.40, the server responds as it should. If I try to telnet into port 25 on 24.159.225.122, the firewall allows the connection, but the port doesn't appear to be forwarded to 10.10.20.40 - the telnet session breaks off. For example: ns1# telnet 24.159.225.122 25 Trying 24.159.225.122... telnet: connect to address 24.159.225.122: Connection refused telnet: Unable to connect to remote host In the firewall logs: Sep 23 00:11:37 ns1 /kernel: ipfw: 2500 Accept TCP 10.10.20.101:2101 24.159.225.122:25 in via xl0 The importance of this working is that people from the outside have to be able to reach the internal server through the public address. I don't know if I am giving enough information in this email... If anyone is doing something like this, how do you know that the port redirection is actually working? And, does it look like things are set up correctly? Thanks in advance, SF _________________________________________________________ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?LOBBKFILCMGGNDCBBCELOEPMECAA.snf_lists>