Date: Wed, 6 Oct 1999 11:27:44 +0800 From: Yusuf Goolamabbas <yusufg@outblaze.com> To: Chris Dillon <cdillon@wolves.k12.mo.us> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: Trying to achieve zen with natd Message-ID: <19991006112744.A3111@outblaze.com> In-Reply-To: <Pine.BSF.4.10.9910050955230.37431-100000@mail.wolves.k12.mo.us> References: <19991005045350.11294.qmail@yusufg.portal2.com> <Pine.BSF.4.10.9910050955230.37431-100000@mail.wolves.k12.mo.us>
next in thread | previous in thread | raw e-mail | index | archive | help
> That doesn't really make any sense... Is fxp1 attached to your > private network, or the public network? Both, some machines on that network have valid routable address and some machines have non routable addresses. Therefore I have aliased a 192.168 on this interface What I would like is packets coming via this aliased interface get NAT'ted to the public interface which is also bound to the same card This card is connected to a switch which connects via a router to the WAN interface This machine also has a second NIC which connects to a different switch and then on via a router to a different WAN interface The current function of this box is to act as router to get to/fro from machines in the different ISP segments without the packets leaving the premises and going through the IX. This works very well. Now, I would also like it to be a NAT box From what I read of NAT, it usually requires 2 NIC's, one to the internal (192.168) network and the other NIC to the external one. What I need to do is to make this work with one NIC bound to 2 different IP addresses. Is this possible ? > > > I would like to configure this box to act as a NATD box. Set the right > > kernel config and recompile the kernel > > > > /etc/rc.conf > > > > gateway_enable="YES" > > firewall_enable="YES" > > firewall_type="open" > > natd_enable = "YES" > > natd_interface = "fxp1" #Assuming this will take the public interface > > natd_flags = "-u" > > The natd_interface does indeed take the public interface, but that > isn't what you seem to be indicating below.... > > > I did the following in /etc/rc.local > > > > ifconfig fxp1 alias 192.168.0.1 netmask 255.255.255.0 > > You don't need to, and probably shouldn't, do this in /etc/rc.local. > Add a line like this to /etc/rc.conf: > > ifconfig_fxp1_alias0="inet 192.168.0.1 netmask 255.255.255.0" To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19991006112744.A3111>