From owner-freebsd-questions  Tue Nov 17 19:48:41 1998
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id TAA11177
          for freebsd-questions-outgoing; Tue, 17 Nov 1998 19:48:41 -0800 (PST)
          (envelope-from owner-freebsd-questions@FreeBSD.ORG)
Received: from awfulhak.org (awfulhak.force9.co.uk [195.166.136.63])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id TAA11137
          for <freebsd-questions@FreeBSD.ORG>; Tue, 17 Nov 1998 19:48:32 -0800 (PST)
          (envelope-from brian@Awfulhak.org)
Received: from woof.lan.awfulhak.org (woof.lan.Awfulhak.org [172.16.0.7])
	by awfulhak.org (8.8.8/8.8.8) with ESMTP id DAA10170;
	Wed, 18 Nov 1998 03:34:12 GMT
	(envelope-from brian@Awfulhak.org)
Received: from woof.lan.awfulhak.org (localhost [127.0.0.1])
	by woof.lan.awfulhak.org (8.9.1/8.9.1) with ESMTP id DAA08254;
	Wed, 18 Nov 1998 03:34:11 GMT
	(envelope-from brian@woof.lan.awfulhak.org)
Message-Id: <199811180334.DAA08254@woof.lan.awfulhak.org>
X-Mailer: exmh version 2.0.2 2/24/98
To: Doug White <dwhite@resnet.uoregon.edu>
cc: Ruslan Ermilov <ru@ucb.crimea.ua>, ?ukasz Misiuda <luk@albion.albion.pl>,
        freebsd-questions@FreeBSD.ORG
Subject: Re: natd not working 
In-reply-to: Your message of "Tue, 17 Nov 1998 09:18:09 PST."
             <Pine.BSF.4.03.9811170915400.6774-100000@resnet.uoregon.edu> 
Mime-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Date: Wed, 18 Nov 1998 03:34:09 +0000
From: Brian Somers <brian@Awfulhak.org>
Content-Transfer-Encoding: 8bit
X-MIME-Autoconverted: from quoted-printable to 8bit by hub.freebsd.org id TAA11173
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

> On Tue, 17 Nov 1998, Ruslan Ermilov wrote:
> 
> > On Mon, Nov 16, 1998 at 04:47:20PM -0800, Doug White wrote:
> > > On Mon, 16 Nov 1998, [ISO-8859-2] Łukasz Misiuda wrote:
> > > 
> > > > LAN - ed0 - ethrnet 
> > > > WAN - ppp0 - leased line (pppd)
> > > 
> > > Standard issue.
> > > 
> > > > I followed all suggestions in 'man', e.g.:
> > > > 
> > > > -kernel with IPFIREWALL, and IPDIVERT
> > > > -ip forwarding
> > > > -ipfw rule: ipfw add divert natd all from any to any via ppp0
> > > > -starting natd (from console): natd -v -n ppp0
> > >                                             ^^^^
> > > 
> > > Oops, this should be ed0.  See the natd man page.
> > > 
> > 
> > Why it should be ed0? Bother to explain?
> 
> Sure.  You want the packets to be translated from the outside world's
> address to your internal network.  The -n (aka -interface) option takes
> the IP address and netmask of the named interface for the destination
> translation address.  You want the LAN hidden from the rest of the world,
> not the rest of the world hidden by the LAN.  :)  

Natd must be given all packets that pass through the *public* 
interface.
-- 
Brian <brian@Awfulhak.org>, <brian@FreeBSD.org>, <brian@OpenBSD.org>
      <http://www.Awfulhak.org>
Don't _EVER_ lose your sense of humour....



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message