From owner-freebsd-questions Tue Nov 28 20:19:15 2000 Delivered-To: freebsd-questions@freebsd.org Received: from tomts5-srv.bellnexxia.net (tomts5.bellnexxia.net [209.226.175.25]) by hub.freebsd.org (Postfix) with ESMTP id A9C1437B402; Tue, 28 Nov 2000 20:19:10 -0800 (PST) Received: from johnny5 ([64.229.47.198]) by tomts5-srv.bellnexxia.net (InterMail vM.4.01.03.00 201-229-121) with SMTP id <20001129041909.SALC22808.tomts5-srv.bellnexxia.net@johnny5>; Tue, 28 Nov 2000 23:19:09 -0500 Message-ID: <002d01c059ba$f55d5ea0$0100000a@johnny5> Reply-To: "John Telford" From: "John Telford" To: , Subject: Natd redirect_address bug ? Date: Tue, 28 Nov 2000 23:15:07 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG This is in reference to my post earlier this month "Natd redirect address not working in 4.1.1 Help Please ??" and how I got it resolved. Credit for the solution goes to Daniel Charboneau. I'm posting this to help others who may encounter the same problem and also ask the seasoned pro's if this might be a bug, or is it just how natd works ? The brief story: Using the redirect_address option with natd would not work to access a box inside the firewall with a certain set of ip numbers. However it worked fine using a different set of ip numbers. I re-created the problem on some spare equipment. If anyone wants to investigate further drop me a note for the numbers I was using. This was resolved by Daniel's suggestion that I alias the address on my public side, then redirect it to the private side address. This is what went into my /etc./rc.conf: natd_enable="YES" # Enable natd (if firewall_enable == YES). natd_interface="fxp0" # Public interface or IPaddress to use. natd_flags="-f /etc/natd.conf" #External Interface... the aliasing allows it to listen and respond to multiple ip's on one NIC. ifconfig_fxp0_alias0="inet 216.xxx.xxx.1 netmask 255.255.255.224" #public natd interface ifxonfig_fxp0_alias1="inet 216.xxx.xxx.2 netmask 255.255.255.224" #public ip to be redirected in. #Internal Interface ifconfig_fxp1="inet 10.130.25.9 netmask 255.255.0.0" And in /etc/natd.conf redirect_address 10.130.5.2 216.xxx.xxx.2 Regards, John. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message