Date: Wed, 9 May 2001 10:51:43 +0100 From: Ian Chilton <ian@ichilton.co.uk> To: freebsd-questions@freebsd.org Subject: Port Forwarding and IPFW Message-ID: <20010509105143.A7437@woody.ichilton.co.uk>
next in thread | raw e-mail | index | archive | help
Hello,
Please CC replies to ian@ichilton.co.uk, as I am not on the list!
Just 4 quick questions:
1) For NAT to work, do I have to to something like:
${fwcmd} add pass all from ${inet}:${imask} to ${onet}:${omask}
as well as:
${fwcmd} add divert natd all from any to any via ${oif}
Or, will the latter surfice?
2) The above "${fwcmd} add divert natd all from any to any via ${oif}"
should cover the 3 internal i/f's I have (192.168.1.1, 192.168.2.1,
192.168.3.1), if I understand correct.
How can I add a bandwidth limit of 32k to each of those i/f's?
I want to stop people using NAT inside saturating the connection which
is used for hosting.
3) How do I do port forwarding on FreeBSD, with IPFW+NATD?
I want to add a few virtual interfaces to the outside interface with
more static ip's, block all ports on these ip's, except some ports
which will be sent inside. How do I do the forwarding?
4) Are these the right rules for the above, and are they in the right
order?
# Should be deny by default, so will allow 80 and 25 in:
${fwcmd} add pass tcp from any to ${fwip1} 80 setup
${fwcmd} add pass tcp from any to ${fwip1} 25 setup
<commands from Q3 to forward ports 80 and 25 to 192.168.1.10 ports 80
and 25>
Correct?
Thanks in Advance!
Bye for Now,
Ian
\|||/
(o o)
/-----------------------------ooO-(_)-Ooo----------------------------\
| Ian Chilton E-Mail: ian@ichilton.co.uk |
| IRC Nick: GadgetMan Backup: ichilton@www.linux.org.uk |
| ICQ: 16007717 / 104665842 Web : http://www.ichilton.co.uk |
|--------------------------------------------------------------------|
| For people who like peace and quiet: a phoneless cord |
\--------------------------------------------------------------------/
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010509105143.A7437>