From owner-freebsd-questions Thu Jul 2 11:51:39 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA17225 for freebsd-questions-outgoing; Thu, 2 Jul 1998 11:51:39 -0700 (PDT) (envelope-from owner-freebsd-questions@FreeBSD.ORG) Received: from post.mail.demon.net (post-11.mail.demon.net [194.217.242.40]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id LAA17145 for ; Thu, 2 Jul 1998 11:51:00 -0700 (PDT) (envelope-from steve@bucket.org) Received: from (slush.bucket.org) [194.159.240.115] by post.mail.demon.net with esmtp (Exim 1.82 #2) id 0yroRS-0004Hd-00; Thu, 2 Jul 1998 18:50:46 +0000 Received: from bint (steve@bint.bucket.org [194.159.240.114]) by slush.bucket.org (8.6.12/8.6.12) with SMTP id TAA25446 for ; Thu, 2 Jul 1998 19:50:29 +0100 Message-Id: <199807021850.TAA25446@slush.bucket.org> Reply-To: From: "Steve Hicks" To: Subject: IPFW and NATD woes. Date: Thu, 2 Jul 1998 19:47:19 +0100 X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook 8.5, Build 4.71.2173.0 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.2106.4 Importance: Normal Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hello all, Please can you see if you can help with the following... I have a machine with a public interface (ed0 194.159.240.116 and 194.159.240.124) and a private interface (ep0 192.168.1.1) I have rebuilt my kernel with options IPFIREWALL and options IPDIVERT. I have added the natd entry in /etc/services. Now, what I want to do is take all traffic destined for 194.159.240.124, translate it and send it out on ep0 to machine 192.168.1.2. However, I still want all traffic destined for 194.159.240.116 to end up on the firewall. The main purpose of this exsercise is to control access to 192.168.1.2. I have spent many hours so far looking through the man pages, the handbook and various mailing list archives only to find that nearly every related article is based around hanging a private network off a PPP connection to an ISP. Can anyone help? Please? -- ------------------------------------------------------------------------ All the best - Steve Hicks http://www.bucket.org/~steve/ steve@bucket.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message