From owner-freebsd-questions@FreeBSD.ORG  Thu Oct 13 15:12:18 2005
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 9CFEF16A41F
	for <freebsd-questions@freebsd.org>;
	Thu, 13 Oct 2005 15:12:18 +0000 (GMT)
	(envelope-from efrenba@dhl.co.cu)
Received: from dhl.co.cu (DHLMAIL.dhl.co.cu [200.55.156.130])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 606A643D46
	for <freebsd-questions@freebsd.org>;
	Thu, 13 Oct 2005 15:12:09 +0000 (GMT)
	(envelope-from efrenba@dhl.co.cu)
Received: from WorldClient by dhl.co.cu (MDaemon.PRO.v8.0.2.R)
	with ESMTP id md50000051353.msg
	for <freebsd-questions@freebsd.org>; Thu, 13 Oct 2005 11:14:02 -0500
Received: from [7.96.160.15] via WorldClient with HTTP;
	Thu, 13 Oct 2005 11:14:00 -0500
Date: Thu, 13 Oct 2005 11:14:00 -0500
From: "Efren Bravo" <efrenba@dhl.co.cu>
To: "freeBSD " <freebsd-questions@freebsd.org>
MIME-Version: 1.0
Content-Type: text/plain
Message-ID: <WorldClient-F200510131114.AA14000055@dhl.co.cu>
X-Mailer: WorldClient 8.0.2
X-Authenticated-Sender: efrenba@dhl.co.cu
X-Spam-Processed: dhl.co.cu, Thu, 13 Oct 2005 11:14:02 -0500
	(not processed: message from valid local sender)
X-Return-Path: efrenba@dhl.co.cu
X-MDaemon-Deliver-To: freebsd-questions@freebsd.org
X-MDAV-Processed: dhl.co.cu, Thu, 13 Oct 2005 11:14:03 -0500
Subject: ftp problem -ipfw with natd
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 13 Oct 2005 15:12:18 -0000

Hi,

I've problem with ipfw with natd to access from internal network to
internet ftp sites. From fbsd box i can access to ftp sites.

vr0 = out interface
6.34.60.15 = mi pc (winXP)
8668 = natd <== Why on this rule ntad is tranlated to 8668?

My rules:
---------
...
00070 divert 8668 ip from any to any in via vr0
00100 check-state
...
00131 skipto 15000 tcp from me to any out via vr0 setup keep-state
00132 skipto 15000 tcp from 6.34.60.0/24{9,13,15} to any out via vr0 setup
keep-state
...
15000 divert 8668 ip from any to any out via vr0
15005 allow log logamount 5 ip from any to any
65535 deny ip from any to any


Thanks...