From owner-freebsd-questions@FreeBSD.ORG  Wed May 21 21:21:31 2003
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 58A4337B401
	for <freebsd-questions@freebsd.org>;
	Wed, 21 May 2003 21:21:31 -0700 (PDT)
Received: from laibach.mweb.co.za (laibach.mweb.co.za [196.2.53.177])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 1477943FBF
	for <freebsd-questions@freebsd.org>;
	Wed, 21 May 2003 21:21:30 -0700 (PDT)
	(envelope-from vikashb@mweb.co.za)
Received: from air.mweb.co.za ([196.2.53.154] helo=Debug)
	by laibach.mweb.co.za with smtp (Exim 3.33 #2)
	id 19IhVM-00022s-00
	for freebsd-questions@freebsd.org; Thu, 22 May 2003 06:16:36 +0200
To: freebsd-questions@freebsd.org
From: vikashb@mweb.co.za
Date: Thu, 22 May 2003 04:21:26 GMT
X-Posting-IP: 196.29.130.251
X-Mailer: Endymion MailMan Standard Edition v3.2.18
Message-Id: <E19IhVM-00022s-00@laibach.mweb.co.za>
Subject: NAT on two interfaces
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 22 May 2003 04:21:31 -0000

Greetings,

I currently have a server that with two NICS (fxp0 and xl0) performs NAT 
(using ipfw and natd) between two subnets as follows:
The NATD interface is fxp0

redirect_address 10.10.10.11 0.0.0.0
on fxp0
this setup works fine but I need to add NAT onto xl0 interface
the requirement is as sunch:

any address from the fxp0 subnet (172.16.1.0/24) is allowed to connect
to fxp0 ipaddress (172.16.1.1) which will do a redirect to 10.10.131.57

this will work if i allow can route 172.16.1.0/24 to 10.10.131.57
However i can not route this subnet since its used on the backbone routers.

My question is can i set up nat (or ipnat) to do nating on two interfaces
in the following manner and how :

172.16.1.1/24 connects to 172.16.1.1 which should get redirected to 
10.10.131.57 and have a source address of 10.10.10.6

please advise,


Vikash


---------------------------------------------
This message was sent using M-Web Airmail - JUST LIKE THAT
M-Web: S.A.'s most trusted and reliable Internet Service Provider.
http://airmail.mweb.co.za/