Date: Thu, 29 Jan 1998 22:16:00 +0000 From: Brian Somers <brian@Awfulhak.org> To: Christoph Kukulies <kuku@gilberto.physik.rwth-aachen.de> Cc: Brian Somers <brian@Awfulhak.org>, freebsd-questions@FreeBSD.ORG, chrisa@commlet.com Subject: Re: natd/libalias question Message-ID: <199801292216.WAA23597@awfulhak.org> In-Reply-To: Your message of "Thu, 29 Jan 1998 08:38:48 GMT." <19980129083848.27473@gil.physik.rwth-aachen.de>
next in thread | previous in thread | raw e-mail | index | archive | help
> On Wed, Jan 28, 1998 at 08:39:00PM +0000, Brian Somers wrote:
> > [.....]
> > > It works!
> > >
> > > With the following /etc/rc.firewall:
> > >
> > > /sbin/ipfw -f flush
> > > /sbin/ipfw add divert natd all from any to any via le0
> > > /sbin/ipfw add divert natd all from any to any via ipi0
> > > /sbin/ipfw add pass all from any to any
> > >
> > > And the following natd start line:
> > >
> > > natd -redirect_address 192.168.1.114 0.0.0.0 -n ipi0
> > >
> > > I still have to understand why this natd line makes it work for any
> > > host on my local network, though :-)
> >
> > I'm surprised the first line doesn't break things :-| It's not
> > necessary and shouldn't really be there.
>
> You mean the second line, don't you? :
>
> "/sbin/ipfw add divert natd all from any to any via le0"
You need to divert stuff on the same interface (the external one)
as natd is running on.
[.....]
> --
> --Chris Christoph P. U. Kukulies kuku@gil.physik.rwth-aachen.de
--
Brian <brian@Awfulhak.org>, <brian@FreeBSD.org>, <brian@OpenBSD.org>
<http://www.Awfulhak.org>;
Don't _EVER_ lose your sense of humour....
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199801292216.WAA23597>