From owner-freebsd-questions@FreeBSD.ORG  Wed Jul  2 06:53:38 2003
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id A543F37B401
	for <FreeBSD-questions@freebsd.org>;
	Wed,  2 Jul 2003 06:53:38 -0700 (PDT)
Received: from Danovitsch.dnsq.org (b74143.upc-b.chello.nl [212.83.74.143])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 9AC9544014
	for <FreeBSD-questions@freebsd.org>;
	Wed,  2 Jul 2003 06:53:36 -0700 (PDT)
	(envelope-from Danovitsch@Vitsch.net)
Received: from FreeBSD.Danovitsch.LAN (b83007.upc-b.chello.nl [212.83.83.7])
	by Danovitsch.dnsq.org (8.12.3p2/8.11.3) with ESMTP id h62Dlsak072326;
	Wed, 2 Jul 2003 15:47:55 +0200 (CEST)
	(envelope-from Danovitsch@Vitsch.net)
Content-Type: text/plain;
  charset="iso-8859-1"
From: "Daan Vreeken [PA4DAN]" <Danovitsch@Vitsch.net>
To: admin <admin@routec.net>
Date: Wed, 2 Jul 2003 15:54:01 +0200
User-Agent: KMail/1.4.3
References: <9913238963.20030702114337@routec.net>
	<20030702111512.I24709-100000@gwdu60.gwdg.de>
	<5121335211.20030702135832@routec.net>
In-Reply-To: <5121335211.20030702135832@routec.net>
MIME-Version: 1.0
Content-Transfer-Encoding: quoted-printable
Message-Id: <200307021554.01327.Danovitsch@Vitsch.net>
cc: FreeBSD-questions@freebsd.org
Subject: Re: Re[2]: configuration NAT
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 02 Jul 2003 13:53:38 -0000

On Wednesday 02 July 2003 12:58, Ruslan Sulemanov wrote:
> KH> On Wed, 2 Jul 2003, Ruslan Sulemanov wrote:
> >> I'm try configuration NAT (ipfw + natd),
> >> how i need start natd ?
> >>
> >> Kernel options:
> >>
> >> options IPDIVERT
> >> options IPFIREWALL
>
> KH> /etc/rc.conf:
> KH> firewall_enable=3D"YES"           # Set to YES to enable firewall
> functionality KH> firewall_type=3D"open"            # Firewall type (se=
e
> /etc/rc.firewall) KH>                ^
> KH>                Or whatever you want ...
> KH> natd_enable=3D"YES"               # Enable natd (if firewall_enable=
 =3D=3D
> YES). KH> natd_interface=3D"de0"            # Public interface or IPadd=
ress
> to use. KH>                 ^
> KH>                 Fill in here the device name of your network adapat=
er.
>
> I do it. How i can start natd?
natd_enable=3D"YES" in your /etc/rc.conf will tell FreeBSD to automatical=
ly=20
start it when your system boots.
You can start it manually with :
natd -n de0
(assuming de0 is your outside-interface)

> in my /etc/rc.firewall this rules:
> ipfw -f flush
> ipfw add divert natd all from any to any via fxp0
> ipfw add allow all from any to any
That should get it working

grtz,
Daan