From owner-freebsd-questions  Wed Sep 22  5:11:58 1999
Delivered-To: freebsd-questions@freebsd.org
Received: from mailout2.nyroc.rr.com (mailout2-1.nyroc.rr.com [24.92.226.165])
	by hub.freebsd.org (Postfix) with ESMTP id C2430154CD
	for <freebsd-questions@freebsd.org>; Wed, 22 Sep 1999 05:11:54 -0700 (PDT)
	(envelope-from dheller1@rochester.rr.com)
Received: from rochester.rr.com ([24.24.34.156]) by mailout2.nyroc.rr.com
          (Post.Office MTA v3.5.3 release 223
          ID# 0-59787U250000L250000S0V35) with ESMTP id com;
          Wed, 22 Sep 1999 08:05:02 -0400
Message-ID: <37E8C727.6290C1F7@rochester.rr.com>
Date: Wed, 22 Sep 1999 08:10:15 -0400
From: David Heller <dheller1@rochester.rr.com>
X-Mailer: Mozilla 4.61 [en] (X11; I; FreeBSD 3.2-RELEASE i386)
X-Accept-Language: en
MIME-Version: 1.0
To: Mikhail Teterin <mi@aldan.algebra.com>
Cc: freebsd-questions@freebsd.org
Subject: Re: natd, ftp, two ethernet cards
References: <199909220531.BAA26383@rtfm.newton>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

Mikhail Teterin wrote:

> Can someone, whose setup resembles what's listed in the subject, please,
> send his/her firewall rules and the /etc/natd.conf?
>
> Searching through the mailing lists, brings up only cries for help (like
> this one), or confident responses like:  "yeah, of course, just read the
> natd(8)". Well, natd is NOT easy to understand, unfortunately. I need to
> let the machines  on my home LAN  ftp out (to install  FreeBSD over ftp,
> for example). Being able to access my ISP's (MediaOne) news-server would
> be nice too.
>
> Thanks a lot!
>
>         -mi
>
> P.S.  My favorite part of natd(8) is this:
>
> -redirect_port proto targetIP:targetPORT[-targetPORT] [aliasIP:]alias-
>         PORT[-aliasPORT] [remoteIP[:remotePORT[-remotePORT]]] Redirect
>         incoming connections arriving to given port(s) to another host
>         and  port(s). Proto  is either  tcp  or udp,  targetIP is  the
>         desired  target IP  number, targetPORT  is the  desired target
>         PORT number or  range, aliasPORT is the  requested PORT number
>         or  range,  and  aliasIP  is the  aliasing  address.  RemoteIP
>         and  remotePORT can  be used  to specify  the connection  more
>         accurately if  necessary. The  targetPORT range  and aliasPORT
>         range need not be the same numerically, but must have the same
>         size. If remotePORT is not specified,  it is assumed to be all
>         ports. If remotePORT  is specified, it must match  the size of
>         targetPORT, or be 0 (all ports). For example, the argument
>
> How  can  one  tell  the  difference  between  "the  desired"  and  "the
> requested"?!
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-questions" in the body of the message

Mikhail

Check this out: http://www.freebsdzine.org/199901/features/ipfilter.html
The article should give you every thing you need to start. Yes the man
pages were written
for people who have a computer science degree !!

Best of Luck,

Dave




To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message