From owner-freebsd-questions Tue Sep 12 17:18:38 2000 Delivered-To: freebsd-questions@freebsd.org Received: from mail2.rdc3.on.home.com (mail2.rdc3.on.home.com [24.2.9.41]) by hub.freebsd.org (Postfix) with ESMTP id D579837B424 for ; Tue, 12 Sep 2000 17:18:36 -0700 (PDT) Received: from home.com ([24.42.200.70]) by mail2.rdc3.on.home.com (InterMail vM.4.01.03.00 201-229-121) with ESMTP id <20000913001836.HGLW22521.mail2.rdc3.on.home.com@home.com> for ; Tue, 12 Sep 2000 17:18:36 -0700 Message-ID: <39BEC6D8.D6878055@home.com> Date: Tue, 12 Sep 2000 20:14:16 -0400 From: Damian Gerow X-Mailer: Mozilla 4.74 [en] (X11; U; Linux 2.2.16 i586) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-questions@freebsd.org Subject: ipfw fwd Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I'm looking for a little bit of help with my firewall configuration. A while ago, I set up a firewall using ipfw after some troubles getting NAT to work. Everything works fine now, but I can't get "ipfw fwd" to work. I've got one external IP, and wish to run a mail server on the private network inside, forwarding all SMTP traffic destined for the firewall to this SMTP server. Here's the applicable rules (in this order): ipfw add fwd 10.0.0.25 log logamount 500 tcp from any to ${oip} 25 ipfw add divert natd all from any to any via ${oif} ipfw add pass all from any to any keep-state ipoptions established Default policy is set to deny. I also happen to be running BIND on this same machine, and found that I had to put the "ipfw allow" rules in before the natd rules, or it wouldn't work. But this is another question. Can anyone help? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message