From owner-freebsd-doc Thu Oct 24 11:10:15 2002 Delivered-To: freebsd-doc@hub.freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8CFBD37B404 for ; Thu, 24 Oct 2002 11:10:11 -0700 (PDT) Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id 539A843E9E for ; Thu, 24 Oct 2002 11:10:05 -0700 (PDT) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1]) by freefall.freebsd.org (8.12.6/8.12.6) with ESMTP id g9OIA5x3078915 for ; Thu, 24 Oct 2002 11:10:05 -0700 (PDT) (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.12.6/8.12.6/Submit) id g9OIA57P078914; Thu, 24 Oct 2002 11:10:05 -0700 (PDT) Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3A56E37B401 for ; Thu, 24 Oct 2002 11:07:43 -0700 (PDT) Received: from woozle.rinet.ru (woozle.rinet.ru [195.54.192.68]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4EB6C43E77 for ; Thu, 24 Oct 2002 11:07:42 -0700 (PDT) (envelope-from marck@woozle.rinet.ru) Received: from woozle.rinet.ru (localhost [127.0.0.1]) by woozle.rinet.ru (8.12.5/8.12.5) with ESMTP id g9OI7fTI029999 for ; Thu, 24 Oct 2002 22:07:41 +0400 (MSD) (envelope-from marck@woozle.rinet.ru) Received: (from marck@localhost) by woozle.rinet.ru (8.12.5/8.12.5/Submit) id g9OI7fvf029998; Thu, 24 Oct 2002 22:07:41 +0400 (MSD) Message-Id: <200210241807.g9OI7fvf029998@woozle.rinet.ru> Date: Thu, 24 Oct 2002 22:07:41 +0400 (MSD) From: Dmitry Morozovsky Reply-To: Dmitry Morozovsky To: FreeBSD-gnats-submit@FreeBSD.org X-Send-Pr-Version: 3.113 Subject: docs/44443: addition to handbook: Using User-level PPP NAT Sender: owner-freebsd-doc@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org >Number: 44443 >Category: docs >Synopsis: addition to handbook: Using User-level PPP NAT >Confidential: no >Severity: non-critical >Priority: low >Responsible: freebsd-doc >State: open >Quarter: >Keywords: >Date-Required: >Class: change-request >Submitter-Id: current-users >Arrival-Date: Thu Oct 24 11:10:04 PDT 2002 >Closed-Date: >Last-Modified: >Originator: Dmitry Morozovsky >Release: FreeBSD 4-STABLE i386 >Organization: Cronyx Plus LLC (RiNet ISP) >Environment: System: FreeBSD 4-STABLE >Description: There is very handy feature of current /usr/sbin/ppp: internal NAT. It would be useful to say at least a word or two about it in the Handbook. So, here it is. As I am by no means native speaker ;-) actual wording should be selected as appropriate; however, I suppose my diff would be good place to start. >How-To-Repeat: N/A. >Fix: Index: chapter.sgml =================================================================== RCS file: /home/ncvs/doc/en_US.ISO8859-1/books/handbook/ppp-and-slip/chapter.sgml,v retrieving revision 1.93 diff -u -r1.93 chapter.sgml --- chapter.sgml 13 Oct 2002 15:36:41 -0000 1.93 +++ chapter.sgml 24 Oct 2002 18:02:19 -0000 @@ -1280,6 +1280,33 @@ + + Using PPP Network Address Translation Capability + PPPNAT + + PPP has ability to use internal NAT without kernel diverting + capabilities. This functionality may be enabled by the following + line in /etc/ppp/ppp.conf: + + nat enable yes + + Alternatively, PPP NAT may be enabled by command-line + option -nat. There is also + /etc/rc.conf knob named + ppp_nat, which is enabled by default. + + If you use this feature, you may also find useful + the following /etc/ppp/ppp.conf options + to enable incoming connections forwarding: + + nat port tcp 10.0.0.2:ftp ftp +nat port tcp 10.0.0.2:http http + + or don't trust the outside at all + + nat deny_incoming yes + + Final System Configuration PPPconfiguration >Release-Note: >Audit-Trail: >Unformatted: To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-doc" in the body of the message