Date: Sun, 15 Dec 2019 05:36:03 +0700 From: Eugene Grosbein <eugen@grosbein.net> To: "John W. O'Brien" <john@saltant.com>, FreeBSD Networking <freebsd-net@freebsd.org> Subject: Re: NAT64 return traffic vanishes after successful de-alias Message-ID: <657dd43e-a555-9823-e8fd-a1ee0eb2b0e2@grosbein.net> In-Reply-To: <9f3ee846-1357-0b73-cc0f-e001ea74b15c@saltant.com> References: <9f3ee846-1357-0b73-cc0f-e001ea74b15c@saltant.com>
next in thread | previous in thread | raw e-mail | index | archive | help
15.12.2019 2:54, John W. O'Brien пишет: > Hello FreeBSD Networking, > > As the subject summarizes, I have a mostly-working NAT64 rig, but return > traffic is disappearing, and I haven't been able to figure out why. I > observe the post-translation (4-to-6) packets via ipfwlog0, but a simple > ipfw counter rule ipfw matches nothing. Have you read NETWORK ADDRESS TRANSLATION (NAT) section of ipfw(8) manual page carefully? It tells: > To let the packet continue after being (de)aliased, set the sysctl > variable net.inet.ip.fw.one_pass to 0. Did you set sysctl net.inet.ip.fw.one_pass=0 ?
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?657dd43e-a555-9823-e8fd-a1ee0eb2b0e2>