Date: Fri, 13 May 2005 19:43:21 +0300 (EEST)
From: BigBrother-{BigB3} <bigbrother@bonbon.net>
Cc: freebsd-security@freebsd.org
Subject: Re[3]: icmp problem
Message-ID: <20050513193813.W73276@bigb3server.bbcluster.gr>
In-Reply-To: <1121231288.20050513172559@625.ru>
References: 6667 <20050511205723.48284.qmail@web41210.mail.yahoo.com> <20050513092907.J73276@bigb3server.bbcluster.gr> <1121231288.20050513172559@625.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, 13 May 2005, Danil V. Gerun wrote:
> BB> In my NATED (ipfw+natd) lan EVERY internal host (192.168.XX) can ping
> BB> simultaneously any external host and ALL getting their proper ICMP
> BB> replies.
>
> Well, I didn't configure "ICMP NAT" for my LAN, but I'm just
> wondering: what if _some_ internal hosts start pinging one external
> host? Is each of them going to recieve all the icmp replies?..
>
>
>
As I told you If _some_ internal hosts start pinging one external host,
everyone gets their proper answer. They are not going to receive all the
icmp replies. Everyone receives his reply. Use
natd -v
to figure out
Here is a snip:
Out [ICMP] [ICMP] 192.168.???.130 -> 192.108.???.43 8(0) aliased to
[ICMP] 193.92.???.26 -> 192.108.???.43 8(0)
In [ICMP] [ICMP] 192.108.???.43 -> 193.92.???.26 0(0) aliased to
[ICMP] 192.108.???.43 -> 192.168.???.130 0(0)
Make some experiments with
natd -v
and you will understand this.
---
Dreams have no limits!
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050513193813.W73276>