From owner-freebsd-questions  Thu Nov  6 19:06:36 1997
Return-Path: <owner-freebsd-questions>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.7/8.8.7) id TAA03707
          for questions-outgoing; Thu, 6 Nov 1997 19:06:36 -0800 (PST)
          (envelope-from owner-freebsd-questions)
Received: from awfulhak.demon.co.uk (awfulhak.demon.co.uk [158.152.17.1])
          by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id TAA03698
          for <freebsd-questions@FreeBSD.ORG>; Thu, 6 Nov 1997 19:06:29 -0800 (PST)
          (envelope-from brian@awfulhak.org)
Received: from gate.lan.awfulhak.org (localhost [127.0.0.1])
	by awfulhak.demon.co.uk (8.8.7/8.8.5) with ESMTP id DAA19984;
	Fri, 7 Nov 1997 03:06:14 GMT
Message-Id: <199711070306.DAA19984@awfulhak.demon.co.uk>
X-Mailer: exmh version 2.0zeta 7/24/97
To: aLpHa <wildcard@belen.k12.nm.us>
cc: freebsd-questions@FreeBSD.ORG, chaley@netdot.net
Subject: Re: NATD and how to make it work... 
In-reply-to: Your message of "Thu, 06 Nov 1997 09:54:10 MST."
             <Pine.BSF.3.95q.971106085655.8111A-100000@meddle.belen.k12.nm.us> 
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Date: Fri, 07 Nov 1997 03:06:14 +0000
From: Brian Somers <brian@awfulhak.org>
Sender: owner-freebsd-questions@FreeBSD.ORG
X-Loop: FreeBSD.org
Precedence: bulk

> 
> I got some very good sugestions from all of you, I'm running into an new
> problem though...I took Ben Pepas advice and made a new port 50000, ok and
> I took a new look at my firewall rules everything looks right.  There was
> an influx of questions like what version of freebsd am I running, so I'm
> reposting my origional problem.
> 
> I am running 2.2.5-RELEASE
> I am running the new libexec
> natd came with this version of freebsd
> I have two ethernet cards fxp0 and ep0
> I did compile IPDIVERT and IPFIREWALL into my kernel
> I run natd from the rc.firewall script before ipfw but after the divert
> socket is enabled.
> 
> Problem :
> 
> 	1.  Here is how my network looks.
> 
> 
> 		INSIDE			|		OUTSIDE		
> 					|
> 					|
> 					|	
>      			(192.168.1.1) STARGATE (206.206.121.42)
> 			(ep0)		|	(fxp0)
> 	
> Ok...I have natd running and from STARGATE I can ping inside and outside
> the network.
> A 192.168 machine can ping 192.168.1.1 and 206.206.121.42 but cannot ping
> beyond the external card.
> When I kick natd into verbose mode i get the following traslation table.
> 
> 	192.168.1.245 --> 206.206.121.10 aliases to 
> 	192.168.1.245 --> 206.206.121.10
> 
> It should read:
> 
> 	192.168.1.245 --> 206.206.121.10 aliased to 
> 	206.206.121.42 --> 206.206.121.10

What's the ``natd'' command that you're running ?

Is it:

  natd -n fxp0 -p 50000 -m

or similar ?

[.....]
> Thanks 
> wildcard
[.....]

-- 
Brian <brian@Awfulhak.org>, <brian@FreeBSD.org>, <bri@OpenBSD.org>
      <http://www.Awfulhak.org>
Don't _EVER_ lose your sense of humour....