From owner-freebsd-questions Thu Oct 22 21:14:15 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id VAA17721 for freebsd-questions-outgoing; Thu, 22 Oct 1998 21:14:15 -0700 (PDT) (envelope-from owner-freebsd-questions@FreeBSD.ORG) Received: from cyclops.xtra.co.nz (cyclops.xtra.co.nz [202.27.184.96]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id VAA17713 for ; Thu, 22 Oct 1998 21:14:12 -0700 (PDT) (envelope-from junkmale@pop3.xtra.co.nz) Received: from wocker (210-55-210-87.ipnets.xtra.co.nz [210.55.210.87]) by cyclops.xtra.co.nz (8.9.1/8.9.1) with SMTP id RAA19188; Fri, 23 Oct 1998 17:12:57 +1300 (NZDT) Message-Id: <199810230412.RAA19188@cyclops.xtra.co.nz> From: "Dan Langille" Organization: DVL Software Limited To: Loren Daniel Koss Date: Fri, 23 Oct 1998 17:12:57 +1300 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: Re: NATD & IPFW.. Reply-to: junkmale@xtra.co.nz CC: freebsd-questions@FreeBSD.ORG In-reply-to: X-mailer: Pegasus Mail for Win32 (v3.01b) Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On 22 Oct 98, at 20:13, Loren Daniel Koss wrote: > Now, here's my new network topology: > > 206.0.98.1 <-- Router > | > 206.0.98.10 <-- EP0 > > 192.168.1.1 <--EP1 > | > | > -------Rest of Network - All 192.168.1.x --------- > > Okay, without doing much, machines cacn ping 206.0.98.10, 192.168.1.1, and > other 192.168.1.x machines just fine. The BSD box can get to the internet > just fine, as well. > > Question is how do I masquerade the 192.168.1.x network out to the world > through the 206.0.98.10 address. You really don't have to worry about it. natd will take care of it for you. See below for how to install that. > Also, I run a webserver on one of the machines. How is that going to work > properly? I host about 7 sites on it with seven unique addresses. I was > thinking of hosting them all on one address with different ports and > somehow using NATD to route an address to the proper port on that machine. You can use the redirect bit on natd. It's quite easy. I've done it. See http://www.freebsddiary.com/freebsd/http.htm because I think that's what you want. > I also noticed when it boots it says "IP Filtering Enabled, Divert > Disabled, logging disabled." Is that normal? I have the IPDIVERT option > turned on in the kernal. No, I don't think so. Mine says Divert enabled. It sounds like you haven't specified that diverting of packets is to be done. See below. > What I need: > STEP BY STEP INSTRUCTION (ie natd -n ep0 then ipfw blah blah blah). It's close to step by step. The following should help. The information is there but in several sites. http://www.freebsddiary.com/freebsd/natd.htm http://www.freebsddiary.com/freebsd/dns.htm http://www.freebsddiary.com/freebsd/filtering.htm http://www.freebsddiary.com/freebsd/natd2.htm Of prime importance is your natd setup. Be sure to read the Running natd section at the bottom of http://www.freebsd.org/cgi/man.cgi?natd (also known as "man natd"). -- Dan Langille DVL Software Limited The FreeBSD Diary - my [mis]adventures http://www.FreeBSDDiary.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message