From owner-freebsd-security  Thu Jul 24 10:26:46 1997
Return-Path: <owner-freebsd-security>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.5/8.8.5) id KAA12999
          for security-outgoing; Thu, 24 Jul 1997 10:26:46 -0700 (PDT)
Received: from bitbox.follo.net (eivind@bitbox.follo.net [194.198.43.36])
          by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id KAA12989
          for <freebsd-security@FreeBSD.ORG>; Thu, 24 Jul 1997 10:26:28 -0700 (PDT)
Received: (from eivind@localhost) by bitbox.follo.net (8.8.5/8.7.3) id TAA01132; Thu, 24 Jul 1997 19:25:22 +0200 (CEST)
Date: Thu, 24 Jul 1997 19:25:22 +0200 (CEST)
Message-Id: <199707241725.TAA01132@bitbox.follo.net>
From: Eivind Eklund <perhaps@yes.no>
To: Christian.Gusenbauer@utimaco.co.at
CC: freebsd-security@FreeBSD.ORG
In-reply-to: "DI. Christian Gusenbauer"'s message of Thu, 24 Jul 1997 14:27:23
	+0200
Subject: Re: NATD and skip packets
References: <33D74A2B.7581@utimaco.co.at>
Sender: owner-freebsd-security@FreeBSD.ORG
X-Loop: FreeBSD.org
Precedence: bulk

> 
> Hi!
> 
> We've the following problem: we want to send SKIP packets to our
> partners somewhere in the world. We are using private internet
> addresses in our LAN and would let our FreeBSD firewall translate
> those addresses to public ones. Unfortunately, natd supports only
> TCP, UDP and ICMP packets but we need SKIP.
> 
> My question is: is anyone working on this (supporting SKIP) or do
> you know any (other) solution for this problem?

What are SKIP-packets?

Relevant persons for this are

Archie Cobbs <archie@whistle.com> - added divert to ipfw originally
(if I remember correctly - it may have been Julian
<julian@whistle.com> too)

Ari Suutari <ari.suutari@ps.carel.fi> - original natd author

Charles Mott <cmott@srv.net> - wrote the packet-aliasing engine
(probably most relevant)

Brian Somers <brian@freebsd.org> - brought natd into FreeBSD and is
maintaining that and libalias.

and Yours Truly, who've done some reorganisation of the aliasing code
and did the IRC DCC-support (minor stuff, both of those), and thus
should be able to solve the problem.

Unfortuneatly, I haven't got a clue what a SKIP-packet is, and I
haven't been able to find the term in either Stevens, Halsall, or what
RFC I thought would be relevant.  Any references to what these packets
actually are?

Eivind.