From owner-freebsd-net@FreeBSD.ORG Mon Jun 27 17:57:31 2005 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id CCB5E16A41C for ; Mon, 27 Jun 2005 17:57:31 +0000 (GMT) (envelope-from wagnerrp@email.uc.edu) Received: from mprelay2.uc.edu (newcom.msbb.uc.edu [129.137.5.163]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9061E43D49 for ; Mon, 27 Jun 2005 17:57:31 +0000 (GMT) (envelope-from wagnerrp@email.uc.edu) Received: from mirapoint.uc.edu (mirapoint.uc.edu [10.23.4.254]) by mprelay2.uc.edu (MOS 3.5.8-GR) with ESMTP id CLO54400; Mon, 27 Jun 2005 13:57:29 -0400 (EDT) Received: from raymond (Untitled.rhod.uc.edu [10.52.6.79]) by mirapoint.uc.edu (MOS 3.4.7-GR) with ESMTP id CNA88994; Mon, 27 Jun 2005 13:57:28 -0400 (EDT) Message-Id: <200506271757.CNA88994@mirapoint.uc.edu> From: "Raymond Wagner" To: Date: Mon, 27 Jun 2005 13:57:04 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Mailer: Microsoft Office Outlook, Build 11.0.5510 Thread-Index: AcV7QaB6Rrf6CvpqSke5GDRgSiBJFQ== X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180 Subject: Routing path of jail X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 27 Jun 2005 17:57:31 -0000 I am setting up a firewall (IPFW and NATD) for use on a DSL line with several public IPs. I have set up one alias on my external interface for each IP I am allotted and am trying to force a program to run on one of the aliased addresses. I am using lynx and the website www.whatismyip.com to determine what IP it is using. Currently, I have been trying to use a jail to achieve this. From what I can tell, the jail uses the first address on the external interface as a gateway. Lynx returns the public IP bound to the first address, and my IPFW logs show the same thing. Now using NATD, I have been able to forward computers inside the firewall to one of the other public IP addresses, but I can't get it to work for jail. If there some setting I need to put into the routing tables? Or is there some weird forwarding scheme I can use with NATD to achieve this?