From owner-freebsd-questions@FreeBSD.ORG Sun Oct 5 14:48:37 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E1B18106568C for ; Sun, 5 Oct 2008 14:48:37 +0000 (UTC) (envelope-from nino80@gmail.com) Received: from wr-out-0506.google.com (wr-out-0506.google.com [64.233.184.226]) by mx1.freebsd.org (Postfix) with ESMTP id A05ED8FC12 for ; Sun, 5 Oct 2008 14:48:37 +0000 (UTC) (envelope-from nino80@gmail.com) Received: by wr-out-0506.google.com with SMTP id c8so456656wra.27 for ; Sun, 05 Oct 2008 07:48:36 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to :subject:mime-version:content-type:content-transfer-encoding :content-disposition; bh=Uvm8SdlcAswIDElwgeT0tYZtpN3tdFjQNml63kJGOgI=; b=YeDhaz0ZEsQiBgnRmVy38Bct0NgJCzEF8vXsIHZA1sWhCQDlSCjaYu7FEnK7HjFoMD BidEyQBkpEWyLr8JIoz+bU0G/2owuQUN+RuAyWUXRXSeJvrD5vGJBmSQ5RxFIGzBb/zf lz6VHWKZ897cQW15tuJ2m7ZBHiTkYO47rG40Q= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:mime-version:content-type :content-transfer-encoding:content-disposition; b=rp/unqOEfKqUnlBlsdtL2cCKrESkdH9W1JweIp6X9EL7eChCOj7v7DNoMcn3FSUk2O AsTX3yT43NEPLDEsGuSainDMrQ96EUGuXItFdIctj03K0ISk7FPYarGtmIFegUg5Kxu1 ipXSVNbah8qer2/bG7/2JuVGNx9thH/D7kbAU= Received: by 10.151.143.3 with SMTP id v3mr5713631ybn.159.1223218116817; Sun, 05 Oct 2008 07:48:36 -0700 (PDT) Received: by 10.150.149.12 with HTTP; Sun, 5 Oct 2008 07:48:36 -0700 (PDT) Message-ID: <92bcbda50810050748x753b0555vc6344a0a6c0ff1ca@mail.gmail.com> Date: Sun, 5 Oct 2008 16:48:36 +0200 From: "n j" To: "FreeBSD Questions" MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline Subject: Can't get in-kernel IPFW NAT (libalias) to work X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 05 Oct 2008 14:48:38 -0000 Hello all, I resolved my earlier problem ("ipfw: getsockopt(IP_FW_ADD): Invalid argument" when trying "ipfw add nat") by upgrading to 7.1-BETA which includes ipfw_nat as a kernel module; however, it still doesn't seem to work. When I'm directly ping'ing another box, I can see packets arriving at the destination, so the forwarding part (routes) works fine. However, when I add an ipfw rule to send these packets to the nat instance, the packets disappear instead of arriving nat'ted to the same destination. Did anyone have any success in getting the in-kernel (libalias) ipfw nat to work? I'd be grateful for any pointers. Thanks, -- Nino