From owner-freebsd-questions Wed Nov 3 8:44:16 1999 Delivered-To: freebsd-questions@freebsd.org Received: from mx.emailqueue.net (mx0.emailqueue.net [209.240.140.250]) by hub.freebsd.org (Postfix) with ESMTP id B035714CAD for ; Wed, 3 Nov 1999 08:44:13 -0800 (PST) (envelope-from bs@cyalchemy.com) Received: from mx0.emailqueue.net (209.75.4.19) by mx.emailqueue.net (8.9.3/8.9.3) with ESMTP id IAA37767; Wed, 3 Nov 1999 08:42:26 -0800 (PST) (envelope-from bs@cyalchemy.com) Received: from ben ([63.70.222.240]) by mx0.emailqueue.net (8.9.3/8.9.3) with ESMTP id IAA51441; Wed, 3 Nov 1999 08:42:24 -0800 (PST) Message-Id: <4.2.2.19991103093821.00ab7430@mail.cyalchemy.com> X-Sender: bs@mail.cyalchemy.com (Unverified) X-Mailer: QUALCOMM Windows Eudora Pro Version 4.2.2 Date: Wed, 03 Nov 1999 09:42:23 -0700 To: Drew C Morone From: Ben Schumacher Subject: Re: natd redirect_port question Cc: freebsd-questions@FreeBSD.ORG In-Reply-To: <199911031520.KAA04315@j51.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG At 10:20 AM 11/3/99 -0500, you wrote: >I've got a firewall setup using natd and ipfw. It's working fine, but I >want to open a port and redirect it to the telnet port on a solaris 2.6 >machine inside my firewall. I have the following line in my rc.conf >file: >natd_flags="-l -redirect_port tcp 192.168.0.5:telnet 6666" > >192.168.0.5 being the solaris box. >When I telnet to the firewall box at port 6666, it just sits there, then >times out. > >I can telnet to the solaris box from inside the firewall, and I can set >up a redirect to the ftp port on a windows box, and it works fine: > >natd_flags="-l -redirect_port tcp 192.168.0.4:ftp 7777" > >Why would it time out like that on the solaris box? Drew- I'm not 100% certain, but this sounds like a routing problem to me. If I was you, I would try the telnet again while doing a 'tcpdump' on the outside interface of the FreeBSD box and also on the Solaris box. My guess is that the Solaris box is receiving the packets from the FreeBSD machine, but isn't correctly routing them back. If that's the case, you might need to look over your route tables on the Solaris box. Hope this helps, - Ben Schumacher To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message