From owner-freebsd-questions  Thu Jan  3 14:35:51 2002
Delivered-To: freebsd-questions@freebsd.org
Received: from gull.prod.itd.earthlink.net (gull.mail.pas.earthlink.net [207.217.120.84])
	by hub.freebsd.org (Postfix) with ESMTP id 453ED37B416
	for <freebsd-questions@freebsd.org>; Thu,  3 Jan 2002 14:35:49 -0800 (PST)
Received: from user-33qtk3u.dialup.mindspring.com ([199.174.208.126] helo=gohan.cjclark.org)
	by gull.prod.itd.earthlink.net with esmtp (Exim 3.33 #1)
	id 16MGSe-0004Ic-00; Thu, 03 Jan 2002 14:35:47 -0800
Received: (from cjc@localhost)
	by gohan.cjclark.org (8.11.6/8.11.1) id g03MV2H01653;
	Thu, 3 Jan 2002 14:31:02 -0800 (PST)
	(envelope-from cjc)
Date: Thu, 3 Jan 2002 14:31:01 -0800
From: "Crist J. Clark" <cristjc@earthlink.net>
To: Brett <brett@modlogic.com>
Cc: freebsd-questions@FreeBSD.ORG
Subject: Re: ipfw fwd commands with nat
Message-ID: <20020103143101.C236@gohan.cjclark.org>
Reply-To: cjclark@alum.mit.edu
References: <001101c1940b$cf7e8150$0301a8c0@brettxp>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <001101c1940b$cf7e8150$0301a8c0@brettxp>; from brett@modlogic.com on Wed, Jan 02, 2002 at 11:04:58PM -0500
X-URL: http://people.freebsd.org/~cjc/
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

On Wed, Jan 02, 2002 at 11:04:58PM -0500, Brett wrote:
> Hello,
> 
> I'm having problems with the fwd or divert commands with ipfw to point
> to my internal network.  
> 
> If someone could reply off-list, that would be appreciated.
> 
> Here's a little info.
> External IP
> 24.xxx.xxx.xxx
> Internal 192.168.1.1
> 
> So far, the ipfw rules are pretty bare bones.
> 
> f flush
> add  divert natd all from any to any via dc1
> add  pass all from any to any

You don't want to use ipfw(8) commands to redirect traffic onto your
internal network, you want to configure natd(8) to do it. Your subject
might be a hint to your problems, ipfw(8) 'fwd' rules have nothing
to do with NAT.
-- 
"It's always funny until someone gets hurt. Then it's hilarious."

Crist J. Clark                     |     cjclark@alum.mit.edu
                                   |     cjclark@jhu.edu
http://people.freebsd.org/~cjc/    |     cjc@freebsd.org

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message