From owner-freebsd-questions  Sun Nov 11  7:35:26 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from blacklamb.mykitchentable.net (ekgr-dsl5-t183.citlink.net [207.173.250.183])
	by hub.freebsd.org (Postfix) with ESMTP id AA46037B41B
	for <questions@freebsd.org>; Sun, 11 Nov 2001 07:35:19 -0800 (PST)
Received: from bigdaddy (bigdaddy [192.168.1.3])
	by blacklamb.mykitchentable.net (Postfix) with SMTP
	id C04C1EE547; Sun, 11 Nov 2001 07:36:03 -0800 (PST)
Message-ID: <008901c16ac6$77e41630$0301a8c0@bigdaddy>
From: "Drew Tomlinson" <drew@mykitchentable.net>
To: "K. Greenwood" <k_greenwood1@yahoo.com>
Cc: <questions@freebsd.org>
References: <20011110231828.93029.qmail@web14103.mail.yahoo.com>
Subject: Re: Resolving internal IP's through NAT.
Date: Sun, 11 Nov 2001 07:35:19 -0800
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

----- Original Message -----
From: "K. Greenwood" <k_greenwood1@yahoo.com>
To: <freebsd-questions@FreeBSD.ORG>
Sent: Saturday, November 10, 2001 3:18 PM
Subject: Resolving internal IP's through NAT.


> Hello.  I currently have a FreeBSD 4.2 box which is
> running NAT and
> need to have some internal systems which can be
> accessible
> from the other side of the network.  NAT is being run
> on the
> following xl2 (192.168.50.21) address.
>
> I've done some searching, but the nearest thing I've
> found is this:
>
> http://lists.openresources.com/FreeBSD/freebsd-net/msg00454.html

I was unable to open the link above and see to what you are referring.
However, I run NAT and have services/machines available from the
outside but do it quite differently than what you are attempting.  I
don't think it can work in the way you describe but I am no expert by
any means.

The way I do it is I have NAT forward requests to certain ports from
the outside to ports on machines on the inside.  For example, my web
server (http://www.mykitchentable.net) is on internal box running on
port 80.  Connections to http://www.mykitchentable.net connect to my
public IP (assigned by my ISP via DHCP) on port 80.  NAT sees the
request coming in on port 80 and forwards it to my internal machine on
port 80.

As another example, I have two FBSD boxes.  Say I wanted to be able to
access both from the outside via Telnet. Now this is not a secure
thing to do but this is just an example.  I would set both internal
boxes to accept telnet connections on port 23.  Then I'd tell NAT that
connections coming in on port 23 should be forwarded to box 1 port 23.
To get to box two, I would tell NAT that connections coming in on port
8023 should be forwarded to box 2 port 23.

I actually use the NAT that is built into my ADSL modem/router but I
am sure that natd has a similar function.

HTH,

Drew


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message