From owner-freebsd-questions  Thu Nov  6 16:42:33 1997
Return-Path: <owner-freebsd-questions>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.7/8.8.7) id QAA25443
          for questions-outgoing; Thu, 6 Nov 1997 16:42:33 -0800 (PST)
          (envelope-from owner-freebsd-questions)
Received: from meddle.belen.k12.nm.us (meddle.belen.k12.nm.us [206.206.121.10])
          by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id QAA25417
          for <freebsd-questions@freebsd.org>; Thu, 6 Nov 1997 16:42:27 -0800 (PST)
          (envelope-from wildcard@belen.k12.nm.us)
Received: from localhost (wildcard@localhost)
	by meddle.belen.k12.nm.us (8.8.5/8.8.5) with SMTP id JAA08353;
	Thu, 6 Nov 1997 09:54:10 -0700 (MST)
Date: Thu, 6 Nov 1997 09:54:10 -0700 (MST)
From: aLpHa <wildcard@belen.k12.nm.us>
Reply-To: aLpHa <wildcard@belen.k12.nm.us>
To: freebsd-questions@freebsd.org
cc: chaley@netdot.net
Subject: NATD and how to make it work...
Message-ID: <Pine.BSF.3.95q.971106085655.8111A-100000@meddle.belen.k12.nm.us>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk


I got some very good sugestions from all of you, I'm running into an new
problem though...I took Ben Pepas advice and made a new port 50000, ok and
I took a new look at my firewall rules everything looks right.  There was
an influx of questions like what version of freebsd am I running, so I'm
reposting my origional problem.

I am running 2.2.5-RELEASE
I am running the new libexec
natd came with this version of freebsd
I have two ethernet cards fxp0 and ep0
I did compile IPDIVERT and IPFIREWALL into my kernel
I run natd from the rc.firewall script before ipfw but after the divert
socket is enabled.

Problem :

	1.  Here is how my network looks.


		INSIDE			|		OUTSIDE		
					|
					|
					|	
     			(192.168.1.1) STARGATE (206.206.121.42)
			(ep0)		|	(fxp0)
	
Ok...I have natd running and from STARGATE I can ping inside and outside
the network.
A 192.168 machine can ping 192.168.1.1 and 206.206.121.42 but cannot ping
beyond the external card.
When I kick natd into verbose mode i get the following traslation table.

	192.168.1.245 --> 206.206.121.10 aliases to 
	192.168.1.245 --> 206.206.121.10

It should read:

	192.168.1.245 --> 206.206.121.10 aliased to 
	206.206.121.42 --> 206.206.121.10

ok I hope that makes some sense, I do not know what the heck is going on
with natd and why it isn't aliasing the IP addresses correctly.  Anyone
else have a clue??

Thanks 
wildcard

I am willing to call anyone, I don't care if they live in Guam, I really
need someone to talk me through what is going on.



-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: 2.6.2

mQCNAzQ+Te4AAAEEAMOfXAPvy7YTmgOG+RtdddihcXnlSjuO8AqkaIoGM9rLvkRj
XF0GY4zWlSFDR5QQU8agfyQ8YARl9ICxg8g64cm8Ejyhi87014mYcLx6j/Z4kgBp
oyTCJLELjOb1mdmloMsNoiXoU7iYG8/Wnz9Hf9uCC0FE0S3A57JEJYo0aRu1AAUR
tBh3aWxkY2FyZEBiZWxlbi5rMTIubm0udXM=
=4A/3
-----END PGP PUBLIC KEY BLOCK-----