From owner-freebsd-questions  Wed Mar  1  7:18:35 2000
Delivered-To: freebsd-questions@freebsd.org
Received: from cytosine.dhs.org (cx272244-a.orng1.occa.home.com [24.1.177.149])
	by hub.freebsd.org (Postfix) with ESMTP id 8F4B737C332
	for <freebsd-questions@FreeBSD.ORG>; Wed,  1 Mar 2000 07:18:26 -0800 (PST)
	(envelope-from bhishan@cytosine.dhs.org)
Received: (from bhishan@localhost)
	by cytosine.dhs.org (8.9.3/8.9.3) id HAA14996;
	Wed, 1 Mar 2000 07:18:17 -0800 (PST)
	(envelope-from bhishan)
From: Bhishan Hemrajani <bhishan@cytosine.dhs.org>
Message-Id: <200003011518.HAA14996@cytosine.dhs.org>
Subject: Re: Problem with IP aliasing
In-Reply-To: <v02130500b4e2d8390d18@[192.168.0.3]> from Yves Berthiaume at "Mar
 1, 2000 10:04:27 am"
To: Yves Berthiaume <yves@radicaux-libres.qc.ca>
Date: Wed, 1 Mar 2000 07:18:17 -0800 (PST)
Cc: freebsd-questions@FreeBSD.ORG
X-Mailer: ELM [version 2.4ME+ PL68 (25)]
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

10 is a rule number.

yes, de1 is in fact xl1.

man natd is the best resource.

--bhishan

> At 8:08 PM 2/29/00, Bhishan Hemrajani wrote:
> 
> >First of all, that stuff you have in your rc.firewall is wrong.
> >Your rc.firewall should look like this:
> >$fwcmd -f flush
> >$fwcmd add 10 divert natd all from any to any via de1
> >$fwcmd add 65000 allow all from any to any
> 
> There is a couple of things I dont get here.
> 
>         >$fwcmd -f flush
>         flush is fine
> 
>         >$fwcmd add 10 divert natd all from any to any via de1
>         10... is this a port? services does'nt specify it... I've also
> never used divert... I'm assumming that
>         "de1" is in fact "xl1"
> 
>         >$fwcmd add 65000 allow all from any to any
>         65000.. also a port I'm not aware of...
> 
> On rc.firewal I've basically took the prototype and seasoned it to taste
> for the different services I have on the server i.e mail, ftp, etc...
> 
> >Also, you should be starting natd like this:
> >natd -n xl1
> 
> I did see your point when I read man natd.
> 
> Also, could anybody point me to a *good* HOWTO on natd?
> 
> Thanks for your help.
> 
> 
> 
> _______________________________________________
> Radicaux Libres                                   Solutions technologiques
> Yves Berthiaume                                            4644 Parthenais
> T:514.529.0989                                           Montreal, Quebec
> F:514.529.4633                                                     H2H 2G7
> 
> 
> 



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message