From owner-freebsd-isp  Thu Nov  6 02:00:50 1997
Return-Path: <owner-freebsd-isp>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.7/8.8.7) id CAA04698
          for isp-outgoing; Thu, 6 Nov 1997 02:00:50 -0800 (PST)
          (envelope-from owner-freebsd-isp)
Received: from cam.grad.kiev.ua ([195.5.25.54])
          by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id CAA04691;
          Thu, 6 Nov 1997 02:00:44 -0800 (PST)
          (envelope-from Ruslan@Shevchenko.kiev.ua)
Received: from Shevchenko.kiev.ua (localhost [127.0.0.1])
	by cam.grad.kiev.ua (8.8.7/8.8.5) with ESMTP id MAA00340;
	Thu, 6 Nov 1997 12:56:04 GMT
Message-ID: <3461BE63.D1047E3C@Shevchenko.kiev.ua>
Date: Thu, 06 Nov 1997 12:56:04 +0000
From: Ruslan Shevchenko <Ruslan@Shevchenko.kiev.ua>
X-Mailer: Mozilla 4.03b8 [en] (X11; I; FreeBSD 2.2.5-STABLE i386)
MIME-Version: 1.0
To: Brian Somers <brian@awfulhak.org>
CC: freebsd-questions@FreeBSD.org, freebsd-isp@FreeBSD.org
Subject: Re: Help with Natd, pls.
References: <199711052358.XAA03948@awfulhak.demon.co.uk>
Content-Type: text/plain; charset=koi8-r
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-isp@FreeBSD.org
X-Loop: FreeBSD.org
Precedence: bulk

Brian Somers wrote:

> ?
> ?  I have:
> ?                                  ISP (user-level ppp)
> ?   10.0.0.50 = ep0 FreeBSD tun0 ---------?
> ?    / \
> ?     |
> ?     |
> ?   Local net
> ?
> ? I can't setup natd, (during this nigth).
> ?
> ?  I want, that mashines in 10.0.0. -- was be abble
> ?   connect with news-server outside my,
> ?  as i think, natd must change 10.0.0. address to address of my mashine,
> ?   during request from client to outside mashine, and do back substitute,
> ?   as proxy.
> ?
> ?
> ? According to documentation I included all options in kernel,
> ?
> ? in /etc/rc.firewall:
> ?    /sbin/ipfw -f flash
> ?    /sbin/ipfw add 1000 pass all from 127.0.0.1 to 127.0.0.1
> ?    /sbin/ipfw add divert 6668 all from any to any via ep0
> ?    /sbin/ipfw add 6500 pass all from any to any.
> ?
> ?
> ? in /etc/rc.local:
> ?    /usr/sbin/natd -n ep0
> ?
> ?
> ? what I doing wrong ?
> ?
>
> You're masquerading on the wrong interface.  You should remove natd
> altogether (along with your divert rules) and use the -alias switch
> to ppp.

 Yes. It's works.

   (But quite interesting, why Natd is not work, when I changed ep0 to tun0
in it ?)

  Great thanks.


> --
> Brian ?brian@Awfulhak.org?, ?brian@FreeBSD.org?, ?bri@OpenBSD.org?
>       ?http://www.Awfulhak.org?
> Don't _EVER_ lose your sense of humour....