From owner-freebsd-ipfw Wed Aug 9 14:12:29 2000 Delivered-To: freebsd-ipfw@freebsd.org Received: from stratus.cloudfactory.org (cloudfactory.org [205.179.129.18]) by hub.freebsd.org (Postfix) with ESMTP id 781E537B702 for ; Wed, 9 Aug 2000 14:12:26 -0700 (PDT) (envelope-from terrac@cloudfactory.org) Received: from localhost (terrac@localhost) by stratus.cloudfactory.org (8.8.8/8.8.7) with ESMTP id OAA24145; Wed, 9 Aug 2000 14:14:29 -0700 Date: Wed, 9 Aug 2000 14:14:29 -0700 (PDT) From: TeRrAc To: Nick Rogness Cc: FreeBSD IPFW list Subject: Re: natd + IPFW In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-ipfw@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I am sorry. Yes I had done this, however in composing the mail I copied straight fromteh natd man page. If I were to build a custom rc.firewall script to do this job would it need more than: --- flush divert natd all from any to any via fxp1 allow ip from any to any allow icmp from any to any --- ? Also, would forwarding keep packets from getting routed back to the source? Or are they possibly getting stopped before they reach their destination? Terrac Skiens On Wed, 9 Aug 2000, Nick Rogness wrote: > On Wed, 9 Aug 2000, TeRrAc wrote: > > > > > I have also tried using the IPFW commands; > > /sbin/ipfw -f flush > > /sbin/ipfw add divert natd all from any to any via ed0 > ^^^^^ > Should be outside interface > > /sbin/ipfw add divert natd all from any to any via fxp1 > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message