Date: Thu, 27 May 2004 00:23:03 -0500 (CDT) From: Chris Dillon <cdillon@wolves.k12.mo.us> To: Evgeny Ivanov <evgeny@networkersbg.com> Cc: freebsd-stable@freebsd.org Subject: Re: NATD Issue Message-ID: <20040527001714.X62368@duey.wolves.k12.mo.us> In-Reply-To: <200405261808.i4QI8NRd050491@ns.networkersbg.com> References: <200405261808.i4QI8NRd050491@ns.networkersbg.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 26 May 2004, Evgeny Ivanov wrote: > in rc.conf: > natd_enable="YES" > natd_flags="-f /etc/natd.conf" You also need: gateway_enable="YES" firewall_enable="YES" Also make sure you're not doing anything silly in ipfw. Use a stock /etc/rc.firewall and set firewall_type="OPEN" in rc.conf to make real sure. > in natd.conf: > use_sockets yes > same_ports yes > reverse yes Why do you want 'reverse' enabled? You probably don't want this. > interface fxp0 Make sure this is your public interface, not the private one. > redirect_address 10.0.1.2 one-external-ip > redirect_address 10.0.1.3 two-external-ip -- Chris Dillon - cdillon(at)wolves.k12.mo.us FreeBSD: The fastest, most open, and most stable OS on the planet - Available for IA32, IA64, AMD64, PC98, Alpha, and UltraSPARC architectures - PowerPC, ARM, MIPS, and S/390 under development - http://www.freebsd.org Q: Because it reverses the logical flow of conversation. A: Why is putting a reply at the top of the message frowned upon?
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040527001714.X62368>