From owner-freebsd-questions@FreeBSD.ORG Thu Aug 5 14:55:58 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9CA7716A4CE for ; Thu, 5 Aug 2004 14:55:58 +0000 (GMT) Received: from pearl.ibctech.ca (dev.eagle.ca [209.167.58.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id 31EAE43D41 for ; Thu, 5 Aug 2004 14:55:58 +0000 (GMT) (envelope-from iaccounts@ibctech.ca) Received: (qmail 45681 invoked by uid 1002); 5 Aug 2004 14:56:10 -0000 Received: from iaccounts@ibctech.ca by pearl.ibctech.ca by uid 89 with qmail-scanner-1.22 (clamscan: 0.73. spamassassin: 2.63. Clear:RC:1(127.0.0.1):. Processed in 2.09593 secs); 05 Aug 2004 14:56:10 -0000 Received: from unknown (HELO webmail.ibctech.ca) (127.0.0.1) by localhost.ibctech.ca with SMTP; 5 Aug 2004 14:56:07 -0000 Received: from 209.167.16.15 (SquirrelMail authenticated user steve@ibctech.ca); by webmail.ibctech.ca with HTTP; Thu, 5 Aug 2004 10:56:07 -0400 (EDT) Message-ID: <2938.209.167.16.15.1091717767.squirrel@209.167.16.15> In-Reply-To: <2936.209.167.16.15.1091717549.squirrel@209.167.16.15> References: <20040805143119.33649.qmail@web12902.mail.yahoo.com> <2936.209.167.16.15.1091717549.squirrel@209.167.16.15> Date: Thu, 5 Aug 2004 10:56:07 -0400 (EDT) From: "Steve Bertrand" To: "Steve Bertrand" User-Agent: SquirrelMail/1.4.3a X-Mailer: SquirrelMail/1.4.3a MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal cc: Noone Nothing cc: freebsd-questions@freebsd.org Subject: Re: natd -redirect_address X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 05 Aug 2004 14:55:58 -0000 >> Hello all, >> >> I am probably missing something really stupid but here it goes. >> I've >> read the man pages, the handbook and even googled the problem to no >> avail. >> >> I am trying to set up natd to redirect public ips to my private >> addresses. >> >> This is what I have set up in rc.conf >> >> defaultrouter="24.97.250.201" >> gateway_enable="YES" >> hostname="gir.visionpayments.net" >> ifconfig_rl0="inet 192.168.0.13 netmask 255.255.255.0" >> ifconfig_xl0="inet 24.97.250.202 netmask 255.255.255.248" >> linux_enable="YES" >> sshd_enable="YES" >> usbd_enable="YES" >> firewall_enabled="YES" >> firewall_type="OPEN" >> natd_enabled="YES" >> natd_interface="xl0" >> natd_flags="-f /etc/natd.conf" >> >> This is what I have in natd.conf >> >> redirect_address 192.168.0.10 24.97.250.203 >> >>>From what I read in the man pages and handbook this should be all I >>> need, however, I cannot even ping 24.97.250.203. So I typed in >> >> -bash-2.05b$ natd -redirect_address 192.168.0.10 24.97.250.203 >> >> and got >> >> natd: aliasing address not given >> >> So I added >> >> ifconfig_xl0_alias0 "inet 24.97.250.203" >> >> to rc.conf and now I am able to ping that public addy but it is >> doesn't seem to be redirecting me to 192.168.0.10. So I typed in >> -bash-2.05b$ natd -redirect_address 192.168.0.10 24.97.250.203 >> again to see what was happens and got >> natd: aliasing address not given Oh, and to further... when using -redirect_address as above, you must supply the -i (-interface) or an -alias_address statement. Try this: # natd -i rl0 -redirect_address 192.168.0.10 0.0.0.0 or this: # natd -a 24.97.250.203 -redirect_address 192.168.0.10 0.0.0.0 Cheers, Steve >> again. am I just being a dumb n00b? wtf am I doing wrong? >> > > First off, have you confirmed natd to be functional? Can the internal > machines get out to the net? > > At what point of your firewall ruleset are you diverting to natd? > > Have you tried this: > > redirect_address 192.168.0.10 0.0.0.0 > > to see if incoming traffic destined to any public IP gets redirected? > > Steve > >> >> >> >> >> --------------------------------- >> Do you Yahoo!? >> New and Improved Yahoo! Mail - 100MB free storage! >> _______________________________________________ >> freebsd-questions@freebsd.org mailing list >> http://lists.freebsd.org/mailman/listinfo/freebsd-questions >> To unsubscribe, send any mail to >> "freebsd-questions-unsubscribe@freebsd.org" >> > > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" >