From owner-freebsd-questions@FreeBSD.ORG  Sat Mar 15 23:08:45 2008
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 65BF9106564A
	for <freebsd-questions@freebsd.org>;
	Sat, 15 Mar 2008 23:08:45 +0000 (UTC)
	(envelope-from strontium90@gmail.com)
Received: from nf-out-0910.google.com (nf-out-0910.google.com [64.233.182.184])
	by mx1.freebsd.org (Postfix) with ESMTP id 090FB8FC16
	for <freebsd-questions@freebsd.org>;
	Sat, 15 Mar 2008 23:08:44 +0000 (UTC)
	(envelope-from strontium90@gmail.com)
Received: by nf-out-0910.google.com with SMTP id b2so1918776nfb.33
	for <freebsd-questions@freebsd.org>;
	Sat, 15 Mar 2008 16:08:43 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma;
	h=domainkey-signature:received:received:message-id:date:from:user-agent:mime-version:to:subject:content-type:content-transfer-encoding;
	bh=NUIlo+gfb2Y0S/c39r9CCe3zauj7UIY38+omsgW8RZ4=;
	b=R+hFOUqs+KkYR6+v299X21nLCrkCxlrN9CDCYWsK1xolsk+9WOJKFdQGamu9gp5w/tyGNhHIu1B+vaEBNvvbQUtW/BTbwul0/WbavZuXOGVnhV5iOkt2JvWv8upz7B0gfBctZUqLsb4HxAWmXxJnKv5ChSqqevTTBgahtkbmnds=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
	h=message-id:date:from:user-agent:mime-version:to:subject:content-type:content-transfer-encoding;
	b=QG7BirvWx49lgXz+slpgTymSgu8xqqUkU1FbXvjbihzdyhE9T7fqji7SnjxLGXcITWwiIRzaeVcyPHreSQgZO/0xLwc0dG2vkl6rEpPecUjlzvQfLx+Gfq/+Nm2UJeJbbuAKPNZLZg0RMYNjmNh0ov/PbakJTz2ijJ6rlwZrhn8=
Received: by 10.78.168.1 with SMTP id q1mr36821337hue.2.1205620919999;
	Sat, 15 Mar 2008 15:41:59 -0700 (PDT)
Received: from ?88.86.8.136? ( [88.86.8.136])
	by mx.google.com with ESMTPS id t10sm23089220muh.13.2008.03.15.15.41.57
	(version=TLSv1/SSLv3 cipher=RC4-MD5);
	Sat, 15 Mar 2008 15:41:58 -0700 (PDT)
Message-ID: <47DC503D.7020008@gmail.com>
Date: Sun, 16 Mar 2008 00:39:57 +0200
From: Razmig K <strontium90@gmail.com>
User-Agent: Thunderbird 1.5.0.7 (X11/20061027)
MIME-Version: 1.0
To: freebsd-questions@freebsd.org
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Subject: IPFW with user-ppp's NAT
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 15 Mar 2008 23:08:45 -0000


Hello,

With IPFW enabled in the kernel, I'd like to use the NAT functionality 
of user-ppp instead of natd. Do I need the IPDIVERT option in the kernel 
and the special arrangement of divert and skipto rules in the ruleset? 
Or, a non-NATed ruleset (as demonstrated in handbook section 28.6.5.6) 
would suffice?
If divert rules are necessary, what argument do I need to pass to action 
divert in place of natd?

Thank you.


//rk