From owner-freebsd-questions Sun Feb 23 15:51:21 2003 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7BAD137B401 for ; Sun, 23 Feb 2003 15:51:20 -0800 (PST) Received: from deter.dk (port74.ds1-oebr.adsl.cybercity.dk [212.242.49.77]) by mx1.FreeBSD.org (Postfix) with SMTP id D110943FBF for ; Sun, 23 Feb 2003 15:51:18 -0800 (PST) (envelope-from no-spam@deter.dk) Received: (qmail 9307 invoked by uid 1001); 23 Feb 2003 23:50:29 -0000 Date: Mon, 24 Feb 2003 00:50:29 +0100 From: Morten Grunnet Buhl To: freebsd-questions@freebsd.org Subject: Input on solution to temporary routing Message-ID: <20030223235029.GB9202@deter.dk> Reply-To: freebsd-questions@freebsd.org Mail-Followup-To: freebsd-questions@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline X-Operating-System: FreeBSD 4.6-STABLE on a i386 X-Uptime: 12:07AM up 31 days, 21:34, 2 users, load averages: 0.00, 0.00, 0.00 User-Agent: Mutt/1.5.1i Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Hello fellow FreeBSD users, I am running a privet nat'ed network in my apartment. We are three computers behind a ipfw + natd firewall/gateway. What I want to do is make it possible for more than one user behind the firewall to have httpd/ftp/'what ever' running. what im looking for is to make it possible for these users to log into the firewall and run a script like so: > opensesamy 192.168.0.2 ftp which would then temporary route outside ftp connections to 192.168.0.2. The problem is tht Im still pretty new to the hole ipwf and natd, but as fare a I can read from the natd man it is not possible to add or remove single natd rules like it is with ipfw. So what I though about was make the script do something like this make ifconfig alisa 192.168.0.10 route 192.168.0.10 to 192.168.0.2 open firewall for connections on ftp which inturn will be forwarded to 192.168.0.10. Looking at was I just wrote makes it all the more messy. I really dont think this is a decent solution so if someone could guide me in the right direction I would really appreciate it. maybe its because its late but my solution really rocked when it was only in my head? -- DetEr.dk - Rules are made to control the fun. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message