Skip site navigation (1)Skip section navigation (2) 
Date:      Tue, 04 Apr 2000 21:41:05 -0400 (EDT)
From:      Mike Heffner <mheffner@mailandnews.com>
To:        freebsd-ipfw@freebsd.org
Subject:   Problems with natd
Message-ID:  <XFMail.20000404214105.mheffner@mailandnews.com>
next in thread | raw e-mail | index | archive | help 

Hi,

I recently upgraded my router from about a month old current. I have noticed
that natd (or something related) has stopped working though. On my system I
have 
        ed0 - outside interface to cable modem
        ep0 - inside to private network

Using the following three ipfw entries:

        allow ip from any to any via ep0
        divert natd from any to any via ed0
        allow ip from any to any

I am unable to use TCP,UDP services out of the ed0 line ( like telneting to a
server on the internet ). I am also unable to telnet or ftp into the box from
the private lan (it should be passed with the first ipfw rule). NOW, if I
remove the "divert natd" line I can use TCP,UDP services out of the server on
ed0 and I'm also able to connect to the box from the internal network.
Strangely, I am able to send ICMP requests with and without natd running.

If I run natd with the verbose flag and also do some tcpdump-ing, I notice that
when I have natd running the packets seem to be going out the ed0 line fine,
but there are no response packets returning (unless they are being silentely
dropped).

Since I had recently replaced my "ed1" (internal network) card, with the "ep0"
I thought that maybe it was a bad card, but when I turn off natd, everything
works fine. Other than the card switch, I haven't changed any other settings or
anything, and I believe I have made all ed1->ep0 changes that are necessary in
config files and such. Has anyone else noticed these problems, or is this just
a dumb user problem :| ? Is there anything that I missed that could be causing
these problems?


Thanks, let me know if there is any more information I can provide

/****************************************
 * Mike Heffner <spock@techfour.net>    *
 * Fredericksburg, VA      ICQ# 882073  *
 * Sent at: 04-Apr-2000 -- 21:21:32 EST *
 * http://my.ispchannel.com/~mheffner   *
 ****************************************/


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ipfw" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?XFMail.20000404214105.mheffner>