From owner-freebsd-questions Wed Jan 9 11:43:12 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mail.interchange.ubc.ca (mail.interchange.ubc.ca [137.82.27.15]) by hub.freebsd.org (Postfix) with ESMTP id 6C06237B41B for ; Wed, 9 Jan 2002 11:43:09 -0800 (PST) Received: from dsl232.net.ubc.ca ([142.103.175.232] helo=zevez) by mail.interchange.ubc.ca with smtp (Exim 3.03 #1) id 16OOcq-0000dJ-01 for freebsd-questions@freebsd.org; Wed, 09 Jan 2002 11:43:04 -0800 Message-Id: <3.0.5.32.20020109114319.018d5e60@pop.interchange.ubc.ca> X-Sender: zev@pop.interchange.ubc.ca X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.5 (32) Date: Wed, 09 Jan 2002 11:43:19 -0800 To: freebsd-questions@freebsd.org From: Zev Thompson Subject: IPNAT: redirecting multiple ports to internal network Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Hi, just a simple question regarding ipf / ipnat. When I was using ipfw / natd, I could specify one rule like this to direct a range of ports from the firewall to a non-routable inside IP: redirect_port tcp 192.168.1.2:12000-12100 12000-12100 But when I try this with ipnat, a similar rule fails: # ipnat - redirect ports 12000 to 12100 to my machine rdr ex0 0/32 port 12000-12100 -> 192.168.1.2 port 12000-12100 tcp I have other rules that use one-to-one matching with single port numbers, and they look just like that: rdr ex0 0/32 port 80 -> 192.168.1.2 port 80 tcp And that works as expected. I read the man page for ipnat(5) already and it's cryptic for someone who doesn't know the syntax it's written in (have a look, you'll see what I mean). Thanks in advance to any who reply. Zev To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message