From owner-freebsd-net  Thu Nov  8 12:41: 4 2001
Delivered-To: freebsd-net@freebsd.org
Received: from swan.prod.itd.earthlink.net (swan.mail.pas.earthlink.net [207.217.120.123])
	by hub.freebsd.org (Postfix) with ESMTP id E517437B41A
	for <freebsd-net@freebsd.org>; Thu,  8 Nov 2001 12:41:02 -0800 (PST)
Received: from dialup-209.245.128.79.dial1.sanjose1.level3.net ([209.245.128.79] helo=blossom.cjclark.org)
	by swan.prod.itd.earthlink.net with esmtp (Exim 3.33 #1)
	id 161vya-0002TN-00; Thu, 08 Nov 2001 12:40:59 -0800
Received: (from cjc@localhost)
	by blossom.cjclark.org (8.11.6/8.11.3) id fA8KdLs10831;
	Thu, 8 Nov 2001 12:39:21 -0800 (PST)
	(envelope-from cjc)
Date: Thu, 8 Nov 2001 12:39:17 -0800
From: "Crist J. Clark" <cristjc@earthlink.net>
To: Michael Loftis <mloftis@wgops.com>
Cc: freebsd-net@FreeBSD.ORG
Subject: Re: natd behaviour.
Message-ID: <20011108123917.F51134@blossom.cjclark.org>
Reply-To: cjclark@alum.mit.edu
References: <3BEA89B3.B88C5048@wgops.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <3BEA89B3.B88C5048@wgops.com>; from mloftis@wgops.com on Thu, Nov 08, 2001 at 05:33:39AM -0800
X-URL: http://people.freebsd.org/~cjc/
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

On Thu, Nov 08, 2001 at 05:33:39AM -0800, Michael Loftis wrote:
> I'm running natd and I need to change it's behaviour slightly.  it seems
> that if it doesn't find a redirect_address match it'll drop connection
> requests for that address, so putting it in a simplest-case divert from
> any to any type of ipfw rulle severly breaks things.  What I need it to
> do is pass those through unmodified.
> 
> Can I get it to do this or am I going to have to get specific with my
> ipfw rules?

If I understand what you are saying, it should be doing this
already. That is, natd(8) passes through anything it does not modify
untouched. It does not drop (any normal) packets.

But if you are still having problems, you will need to be more
specific about your natd(8) configuration, your ipfw(8) rules, your
network topology, and what exactly is not working.
-- 
Crist J. Clark                     |     cjclark@alum.mit.edu
                                   |     cjclark@jhu.edu
http://people.freebsd.org/~cjc/    |     cjc@freebsd.org

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message