From owner-freebsd-questions Fri Aug 4 2:13: 9 2000 Delivered-To: freebsd-questions@freebsd.org Received: from fedde.littleton.co.us (fedde.littleton.co.us [216.17.174.44]) by hub.freebsd.org (Postfix) with ESMTP id B4AB437B554 for ; Fri, 4 Aug 2000 02:13:03 -0700 (PDT) (envelope-from cfedde@fedde.littleton.co.us) Received: from fedde.littleton.co.us (localhost [127.0.0.1]) by fedde.littleton.co.us (8.11.0/8.11.0.Beta3) with ESMTP id e749Cq057297; Fri, 4 Aug 2000 03:12:53 -0600 (MDT) Message-Id: <200008040912.e749Cq057297@fedde.littleton.co.us> To: rshea@opendoor.co.nz Cc: freebsd-questions@FreeBSD.ORG Subject: Re: NATD/"spoofing" and IPFW In-Reply-To: <200008040857.e748va105786@deborah.paradise.net.nz> From: Chris Fedde Date: Fri, 04 Aug 2000 03:12:52 -0600 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Fri, 4 Aug 2000 20:47:34 +1200 rshea@opendoor.co.nz wrote: +------------------ | Hi - I'm new to FreeBSD and trying to make my FreeBSD machine | act as a gateway/firewall to the office LAN. The connection to the | i'net is via a cable modem with a fixed IP address. I am using | IPFW as the firewall and in rc.conf I have set firewall_type to | "simple". The machines on the LAN use addresses in the range | 192.168.10.xx. +------------------ I'm sure that you put the options IPFIREWALL options IPDIVERT lines into your kernel config file and rebuilt the kernel? And you natd_enabled="YES" so when you run ipfw show the first line of output looks something like 00050 6798 3443198 divert 8668 ip from any to any via xl0 Hope that you find the problem chris -- Chris Fedde 303 773 9134 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message