From owner-freebsd-questions Thu Nov 16 8:27:43 2000 Delivered-To: freebsd-questions@freebsd.org Received: from apollo.retec.net (unknown [207.99.22.10]) by hub.freebsd.org (Postfix) with ESMTP id DE8A037B479 for ; Thu, 16 Nov 2000 08:27:40 -0800 (PST) Received: from newken (dhcp100.retec.net [207.99.22.100]) by apollo.retec.net (8.9.3/8.9.0) with SMTP id LAA17856 for ; Thu, 16 Nov 2000 11:21:27 -0500 (EST) Message-ID: <029401c04fea$240f54e0$641663cf@icarz.com> From: "Ken Menzel" To: Subject: ipfw nat many to few how-to Date: Thu, 16 Nov 2000 11:27:41 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hi, I am looking for some configuration help on ipfw unsing NAT (natd). If this is not the correct forum, please direct me on where I can search. I have hunted the web site and can't seem to come up with an example of a simple man to few NAT example. I followed the tutorial ( www.freebsd.org/tutorials ) on setting up a simple firewall. I actually dropped all the firewall stuff and am just using NAT. All my computers on the private net can get out, but I want to be able to redirect some of my outside IP's to the inside. On the external interface I have to IP's configured (the base IP 207.99.22.11) and an alias of 207.99.22.38 I am not sure of the command to redirect all (or some) incoming requests for 207.99.22.38 to some IP (ie 10.0.0.10). Would that be another divert command? Ny natd setup now is only two commands (plus the flush and command setup!). fwcmd="/sbin/ipfw" # Force a flushing of the current rules before we reload. $fwcmd -f flush # Divert all packets through the tunnel interface. $fwcmd add divert natd all from any to any via fxp0 $fwcmd add pass all from any to any Any advice is appreciated. Ken ----------------------------------------------------- Ken Menzel ICQ# 9325188 www.icarz.com kenm@icarz.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message