From owner-freebsd-questions@FreeBSD.ORG Sun Jul 18 15:40:26 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 25A9116A4CE for ; Sun, 18 Jul 2004 15:40:26 +0000 (GMT) Received: from main.gmane.org (main.gmane.org [80.91.224.249]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4F65743D3F for ; Sun, 18 Jul 2004 15:40:19 +0000 (GMT) (envelope-from freebsd-questions@m.gmane.org) Received: from root by main.gmane.org with local (Exim 3.35 #1 (Debian)) id 1BmDlt-0005ot-00 for ; Sun, 18 Jul 2004 17:40:17 +0200 Received: from numerus.ling.uu.se ([130.238.78.148]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Sun, 18 Jul 2004 17:40:13 +0200 Received: from bkhl by numerus.ling.uu.se with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Sun, 18 Jul 2004 17:40:13 +0200 X-Injected-Via-Gmane: http://gmane.org/ Mail-Followup-To: freebsd-questions@freebsd.org To: freebsd-questions@freebsd.org From: bkhl@elektrubadur.se (=?iso-8859-1?q?Bj=F6rn_Lindstr=F6m?=) Date: Sun, 18 Jul 2004 17:26:08 +0200 Lines: 50 Message-ID: Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Complaints-To: usenet@sea.gmane.org X-Gmane-NNTP-Posting-Host: numerus.ling.uu.se Mail-Copies-To: never X-Home-Page: http://bkhl.elektrubadur.se/ User-Agent: Gnus/5.1006 (Gnus v5.10.6) Emacs/21.2 (gnu/linux) Cancel-Lock: sha1:9o+d9WhVDs8uEzYYT7h/sUO4AcA= Sender: news Subject: NAT trouble X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 18 Jul 2004 15:40:26 -0000 I'm having some trouble to get NAT working on the Internet gateway of my home LAN. Here's my setup: I have compiled a kernel with the following options added: options IPFIREWALL options IPFIREWALL_VERBOSE options IPFIREWALL_VERBOSE_LIMIT=10 options IPDIVERT I have these relevant settings in my rc.conf: gateway_enable="YES" firewall_enable="YES" firewall_type="OPEN" natd_enable="YES" natd_interface="tun0" natd_flags="-f /etc/natd.conf" (Where tun0 is the interface of my ADSL connection.) My natd.conf only contains this line: redirect_port tcp 192.168.0.2:15000 15000 Now, when I reboot, ipfw show shows this: 00050 0 0 divert 8668 ip from any to any via tun0 00100 182 15680 allow ip from any to any via lo0 00200 0 0 deny ip from any to 127.0.0.0/8 00300 0 0 deny ip from 127.0.0.0/8 to any 65000 11015 3073646 allow ip from any to any 65535 4 236 deny ip from any to any Here are the problems: * ps ax|grep natd shows that natd is not running. * While I still cat get to the gateway from the inside, connections to the Net doesn't work, until I 'ipfw delete 00050'. I hope someone here has a clue as to what may be wrong with my setup. Thanks in advance, Björn