From owner-freebsd-questions@FreeBSD.ORG  Tue Oct 25 23:21:22 2005
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 679E816A41F
	for <freebsd-questions@freebsd.org>;
	Tue, 25 Oct 2005 23:21:22 +0000 (GMT)
	(envelope-from kwc@shell.TheWorld.com)
Received: from TheWorld.com (pcls2.std.com [192.74.137.142])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 0923C43D45
	for <freebsd-questions@freebsd.org>;
	Tue, 25 Oct 2005 23:21:21 +0000 (GMT)
	(envelope-from kwc@shell.TheWorld.com)
Received: from shell.TheWorld.com (root@shell01.theworld.com [192.74.137.71])
	by TheWorld.com (8.12.8p1/8.12.8) with ESMTP id j9PNIobS025403;
	Tue, 25 Oct 2005 19:21:19 -0400
Received: (from kwc@localhost)
	by shell.TheWorld.com (8.9.3/8.9.3) id SAA10860928;
	Tue, 25 Oct 2005 18:59:52 -0400 (EDT)
Date: Tue, 25 Oct 2005 18:59:52 -0400 (EDT)
From: Kenneth W Cochran <kwc@theworld.com>
Message-Id: <200510252259.SAA10860928@shell.TheWorld.com>
To: freebsd-questions@freebsd.org
X-Virus-Scanned: ClamAV 0.86rc1/1148/Tue Oct 25 15:34:12 2005 on pcls2.std.com
X-Virus-Status: Clean
Subject: ipfw2 NAT/forwarding config for bittorrent
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 25 Oct 2005 23:21:22 -0000

Hello -questions:

I would like to make bittorrent work in following scenario:

- machine running py-bittorrent has private ip-address 192.168.x.y
  and currently runs FreeBSD 5.4-RELEASE

- firewall/NAT machine is FreeBSD 4.10-STABLE, last updated by
  source in November 2004.

- firewall/NAT is ipfw2, has run just fine for months

How do I configure ipfw2 for properly forwarding the bittorrent
ports (6881-6889) to the destination machine?  Log_in_vain is
active on the firewall machine & when bittorrent is active on the
private-ip machine, the firewall's syslog is being cluttered with
attempts on port 6881.

Where in the firewall config would such rule(s) go in relation to
the divert rule?

Would that silence the port 6881 messages & properly pass that
traffic to the internal machine?

So far I'm not understanding the ipfw manpage for port forwarding.
FAQ/documentation/RTFM pointers/examples are quite welcome.  :)

Please CC me any replies.

Thanks,

-kc