From owner-freebsd-questions Wed Sep 8 19:55:28 1999 Delivered-To: freebsd-questions@freebsd.org Received: from mail5.carolina.rr.com (fe5.southeast.rr.com [24.93.67.52]) by hub.freebsd.org (Postfix) with ESMTP id EA5D014F40 for ; Wed, 8 Sep 1999 19:55:21 -0700 (PDT) (envelope-from wsware@carolina.rr.com) Received: from maxdor ([24.93.93.62]) by mail5.carolina.rr.com with Microsoft SMTPSVC(5.5.1875.185.18); Wed, 8 Sep 1999 22:47:37 -0400 Message-ID: <000701befa6e$3a7befe0$0a02a8c0@puffinsoft.com> From: "Scott Ware" To: Subject: FreeBSD 3.2 NATD and IPFW Advice Needed Date: Wed, 8 Sep 1999 22:51:34 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2314.1300 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG FreeBSD 3.2 NATD and IPFW I need to be able to get a 10.x.x.x network to talk with 2 machines on 158.116.206.159 & 160. The main problem is the machine 159 and 160 are very old OS9 and you can't set a default gateway they can only reply to a 158.116.206.x. (Please no comments on the OS9 machines) So what I want is to map: 10.101.46.11 -> 158.116.206.159 10.101.46.12 -> 158.116.206.160 everything on 10.x.x.x needs to think it is talking to 10.101.46.11 or 12 and everything on the 158.116.206.x needs to think it is talking to 158.116.206.158 Before I started ipfw and natd I could talk to every ip address on my freeBSD machine so I know that is right. With all the following settings nothing happens. I try to ftp to 10.101.46.11 or 12 and it just times out.. that I get some message from natd saying it didn't get a reply. but I can get from 158.116.206.158 to 158.116.206.159 and 160 I tried natd_interface="ep1" and natd_interface="ep0" 10.101.46.10 10.101.46.11 158.116.206.159 10.101.46.12+-------+158.116.206.158 | ----------------|FreeBSD|----------------------+ ep1+-------+ep0 | 158.116.206.160 Built Kernel with: options IPFIREWALL #firewall options IPDIVERT #divert sockets ?? Do I need? ?? options IPFIREWALL_VERBOSE #print information about dropped packets ?? options IPFIREWALL_FORWARD #enable transparent proxy support /etc/rc.conf network_interfaces="ep0 ep1 lo0" ifconfig_ep0="inet 158.116.206.158 netmask 255.255.0.0" ifconfig_ep1="inet 10.101.46.10 netmask 255.255.252.0" ifconfig_ep1_alias0="inet 10.101.46.11 netmask 255.255.252.0" ifconfig_ep1_alias1="inet 10.101.46.12 netmask 255.255.252.0" defaultrouter="10.101.44.1" firewall_enable="YES" firewall_type="open" gateway_enable="YES" natd_enable="YES" natd_interface="ep1" # I also Tried natd_interface="ep0" natd_flags="-f /etc/rc.natd" /etc/rc.natd same_ports yes dynamic yes use_sockets yes redirect_address 158.116.206.159 10.101.46.11 redirect_address 158.116.206.160 10.101.46.12 /etc/services -Snip- natd 8668/divert # Network Address Translation socket -Snip- Please Email a reply.. I'm not on the mailing list. wsware@carolina.rr.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message