From owner-freebsd-questions Thu Apr 5 18: 0:24 2001 Delivered-To: freebsd-questions@freebsd.org Received: from cody.jharris.com (cody.jharris.com [205.238.128.83]) by hub.freebsd.org (Postfix) with ESMTP id A192D37B422 for ; Thu, 5 Apr 2001 18:00:18 -0700 (PDT) (envelope-from nick@rogness.net) Received: from localhost (nick@localhost) by cody.jharris.com (8.11.1/8.9.3) with ESMTP id f36243013907; Thu, 5 Apr 2001 21:04:03 -0500 (CDT) (envelope-from nick@rogness.net) Date: Thu, 5 Apr 2001 21:04:02 -0500 (CDT) From: Nick Rogness X-Sender: nick@cody.jharris.com To: Craig Tewksbury Cc: questions@FreeBSD.ORG Subject: Re: ipfw and fwd In-Reply-To: <001d01c0be16$7e009820$ca0aa8c0@tampabay.rr.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Thu, 5 Apr 2001, Craig Tewksbury wrote: > I am using FreeBSD v3.2. I am using ipfw and natd. I would like to > forward inbound ftp traffic to an internal server. I have tried ipfw > fwd unsuccessfully. The rule I tried: > > ipfw add 200 fwd 192.168.4.2 tcp from any to ftp > > Where 192.168.4.2 is the internal ftp server and represents the > public address on my ipfw firewall. > > Am I misunderstanding the function of fwd? I have not tried natd > -redirect_port yet. Would this be a better option? fwd could be added > or removed dynamically (preferred). Any suggestions are welcome. redirect_port is the way to go. Use natd when you need the actual src,dst addresses to change (which is what you are trying to do). ipfw fwd does not do such a thing. Nick Rogness - Keep on Routing in a Free World... "FreeBSD: The Power to Serve!" To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message