Date: Wed, 29 Mar 2000 08:27:56 -0600 From: Richard Martin <dmartin@origen.com> To: freebsd-ipfw@freebsd.org Subject: NATD Translation Message-ID: <38E212EC.F0B7835@origen.com>
next in thread | raw e-mail | index | archive | help
I am using F'BSD 3.4-STABLE as a firewall and NATD to masquerade an internal network behind it. Everything is working well, with the exception of reply packets arriving back at the BSD box with addresses in the internal network. Example: Mar 28 20:04:37 horizon /kernel: ipfw: 700 Deny UDP 216.30.99.2:53 192.168.0.5:1219 in via xl0 Mar 28 20:20:36 horizon /kernel: ipfw: 700 Deny TCP 216.30.99.7:20 192.168.0.5:1272 in via xl0 The above replies to DNS and FTP requests hit the early private network filtering rule. It seems to function perfectly otherwise, and I can't locate a setting that would change this. Have I overlooked something? -- Richard Martin dmartin@origen.com OriGen, inc. Tel: +1 512 474 7278 2525 Hartford Rd. Austin, TX 78703 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?38E212EC.F0B7835>