Date: Thu, 24 Oct 2002 22:07:41 +0400 (MSD) From: Dmitry Morozovsky <marck@rinet.ru> To: FreeBSD-gnats-submit@FreeBSD.org Subject: docs/44443: addition to handbook: Using User-level PPP NAT Message-ID: <200210241807.g9OI7fvf029998@woozle.rinet.ru>
next in thread | raw e-mail | index | archive | help
>Number: 44443
>Category: docs
>Synopsis: addition to handbook: Using User-level PPP NAT
>Confidential: no
>Severity: non-critical
>Priority: low
>Responsible: freebsd-doc
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: change-request
>Submitter-Id: current-users
>Arrival-Date: Thu Oct 24 11:10:04 PDT 2002
>Closed-Date:
>Last-Modified:
>Originator: Dmitry Morozovsky
>Release: FreeBSD 4-STABLE i386
>Organization:
Cronyx Plus LLC (RiNet ISP)
>Environment:
System: FreeBSD 4-STABLE
>Description:
There is very handy feature of current /usr/sbin/ppp: internal NAT.
It would be useful to say at least a word or two about it in the Handbook.
So, here it is. As I am by no means native speaker ;-) actual wording
should be selected as appropriate; however, I suppose my diff would be
good place to start.
>How-To-Repeat:
N/A.
>Fix:
Index: chapter.sgml
===================================================================
RCS file: /home/ncvs/doc/en_US.ISO8859-1/books/handbook/ppp-and-slip/chapter.sgml,v
retrieving revision 1.93
diff -u -r1.93 chapter.sgml
--- chapter.sgml 13 Oct 2002 15:36:41 -0000 1.93
+++ chapter.sgml 24 Oct 2002 18:02:19 -0000
@@ -1280,6 +1280,33 @@
</sect4>
</sect3>
+ <sect3 id="userppp-nat">
+ <title>Using PPP Network Address Translation Capability</title>
+ <indexterm><primary>PPP</primary><secondary>NAT</secondary></indexterm>
+
+ <para>PPP has ability to use internal NAT without kernel diverting
+ capabilities. This functionality may be enabled by the following
+ line in <filename>/etc/ppp/ppp.conf</filename>:</para>
+
+ <programlisting>nat enable yes</programlisting>
+
+ <para>Alternatively, PPP NAT may be enabled by command-line
+ option <literal>-nat</literal>. There is also
+ <filename>/etc/rc.conf</filename> knob named
+ <literal>ppp_nat</literal>, which is enabled by default.</para>
+
+ <para>If you use this feature, you may also find useful
+ the following <filename>/etc/ppp/ppp.conf</filename> options
+ to enable incoming connections forwarding:</para>
+
+ <programlisting>nat port tcp 10.0.0.2:ftp ftp
+nat port tcp 10.0.0.2:http http</programlisting>
+
+ <para>or don't trust the outside at all</para>
+
+ <programlisting>nat deny_incoming yes</programlisting>
+ </sect3>
+
<sect3 id="userppp-final">
<title>Final System Configuration</title>
<indexterm><primary>PPP</primary><secondary>configuration</secondary></indexterm>
>Release-Note:
>Audit-Trail:
>Unformatted:
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-doc" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200210241807.g9OI7fvf029998>