From owner-freebsd-questions@FreeBSD.ORG Thu Feb 16 21:57:20 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 80A4316A420 for ; Thu, 16 Feb 2006 21:57:20 +0000 (GMT) (envelope-from ianchov@gmail.com) Received: from nproxy.gmail.com (nproxy.gmail.com [64.233.182.203]) by mx1.FreeBSD.org (Postfix) with ESMTP id C8C3043D46 for ; Thu, 16 Feb 2006 21:57:19 +0000 (GMT) (envelope-from ianchov@gmail.com) Received: by nproxy.gmail.com with SMTP id x37so181363nfc for ; Thu, 16 Feb 2006 13:57:18 -0800 (PST) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:references; b=tOEt/0ywZGnA43rF//bQ3Tq0lOp07pgwX3XFO3FQ8/+LtrFL9K9Mj5Qp7CsiVlcnP8Wh0Z+MnlqW5mWpOHxfDqTKD+DsohmBFkVtwk3fY67Le/oPC4nS76JUF4BIaS9/c/lMEy4hRCJ9+HXLRYwYKHOY7690sBY6iVkZ8UzUAOk= Received: by 10.48.3.15 with SMTP id 15mr280318nfc; Thu, 16 Feb 2006 13:57:18 -0800 (PST) Received: by 10.49.26.9 with HTTP; Thu, 16 Feb 2006 13:57:18 -0800 (PST) Message-ID: <18e02bd30602161357p30dacd80tc03151a8d31fc87a@mail.gmail.com> Date: Thu, 16 Feb 2006 23:57:18 +0200 From: Iantcho Vassilev To: FreeBSD Questions In-Reply-To: MIME-Version: 1.0 References: <43F3EE83.6060702@mac.com> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Re: natd with several alias IPs X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 16 Feb 2006 21:57:20 -0000 That`s how i do it with PF!!! nat on ed0 proto {tcp udp icmp} from 10.10.xx.xx to any -> 172.16.xx.xx # Rule 2 (NAT) # # nat on ed0 proto {tcp udp icmp} from 10.10.xx.xx to any -> 172.16.xx.xx # # Rule 3 (NAT) # # nat on ed0 proto {tcp udp icmp} from 10.10.xx.xx to any -> 172.16.xx.xx # # Rule 4 (NAT) # # nat on ed0 proto {tcp udp icmp} from 10.10.xx.xx to any -> 172.16.xx.xx ------> Where ed0 is the interface with the alias.. As performace i can say that`s its scalling very well. Because of the natur= e of PF and the options you can set(to be more aggressive or not ) i don`t have problems with overheat. On 2/16/06, Andrew Pantyukhin wrote: > > On 2/16/06, Chuck Swiger wrote: > > Andrew Pantyukhin wrote: > > > I wonder, what tricks do you use to use more than > > > one alias IP? I mean, if you have hundreds of > > > hosts behind your firewall, what can you do to alias > > > some of them to one ip, others to another and so on. > > > > See "man natd" about the following options for 1-to-1 NAT translation, > which can > > be put into /etc/natd.conf and processed automagicly when the machine > boots: > > > > -redirect_address localIP publicIP > > That's one trick. Do you use it in production? How many > hosts do you have mapped this way? How do you get > incoming traffic translated to the address it is meant > for, not the last address? > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to " > freebsd-questions-unsubscribe@freebsd.org" >