Date: Tue, 24 Apr 2001 20:08:15 -0500 (CDT) From: Nick Rogness <nick@rogness.net> To: Gerry Freymann <freymann@eagle.ca> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: NATD/Ipfw and MultiHomed Fun Message-ID: <Pine.BSF.4.21.0104242001430.34739-100000@cody.jharris.com> In-Reply-To: <Pine.BSF.4.21.0104241908520.95453-100000@marlo.eagle.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 24 Apr 2001, Gerry Freymann wrote: > > I simply want to direct port 81 on my gateway machine to port 81 on a > machine behind. > [snip] > Current ipfw list results: > > 00100 divert 8668 ip from any to any via tun0 > 00200 allow ip from any to any via lo0 > 00300 allow ip from any to any > 65535 deny ip from any to any > > (I know, wide open) > > Now, upon startup, in /etc/rc.conf: > > network_interfaces="vr0 vr1 lo0" > ifconfig_vr0="inet 192.168.0.1 netmask 255.255.255.0 mtu 1492" [snip] > > Now, I'd like to open up port 81 on 192.168.0.10 Then why do your have 192.168.1.10 in /etc/natd.conf below....which is it: 192.168.0.10 or 192.168.1.10 ? > > so in /etc/natd.conf: > > dynamic yes > use_sockets yes > same_ports yes > log yes > redirect_port tcp 192.168.1.10:81 81 > > But if you go to my public IP and try to access port 81? It just times > out. > > I can't even see anything in any of the logs to try and find what's > blocking or even seeing the traffic. > > How do you monitor this? debug? etc? ipfw add 5000 allow log ip from any to 192.168.0.10 out via vr0 ipfw add 5001 allow log ip from 192.168.0.10 to any This will let u see what the inside traffic is doing and if your server is responding, etc,etc Nick Rogness <nick@rogness.net> - Keep on Routing in a Free World... "FreeBSD: The Power to Serve!" To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0104242001430.34739-100000>