Date: Fri, 17 Nov 2000 10:07:13 -0800 From: "Crist J . Clark" <cjclark@reflexnet.net> To: Ken Menzel <kenm@icarz.com> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: ipfw divert few to many Message-ID: <20001117100713.A21952@149.211.6.64.reflexcom.com> In-Reply-To: <016d01c050b4$50171800$641663cf@icarz.com>; from kenm@icarz.com on Fri, Nov 17, 2000 at 11:34:49AM -0500 References: <02e701c04fef$e0d35c20$641663cf@icarz.com> <20001116232831.E9740@149.211.6.64.reflexcom.com> <016d01c050b4$50171800$641663cf@icarz.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, Nov 17, 2000 at 11:34:49AM -0500, Ken Menzel wrote: > Thanks Crist, > I did RTFM before posting but it was not clear. More specifically > freebsd2# natd -redirect_address 10.0.0.10 207.99.22.38 > natd: aliasing address not given > freebsd2# natd -redirect_address 10.0.0.10 207.99.22.38 -a > 207.99.22.11 > natd: Unable to bind divert socket.: Address already in use > > Is this because it's already running? I must restart to change these > settings? Yes. # kill `cat /var/run/natd.pid` && > natd -redirect_address 10.0.0.10 207.99.22.38 -a 207.99.22.11 > you MUST supply all the arguments in one shot to natd. I was trying > to add a host after booting, its seems it can't be done. So adding > any new "redirect" hosts to the internal network will require a > shutdown and restart of NAT and any ipfw rules? Is there now way to > use ipfw to do the redirect? You do not have to touch any firewall rules. You only need to stop and restart natd. However, that does mean you need to be _very_ careful if you are trying to do the restart remotely (you can do it, but like I said, you need to be careful). The current translation table will be lost. -- Crist J. Clark cjclark@alum.mit.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20001117100713.A21952>