From owner-freebsd-questions Fri Feb 9 3:15:29 2001 Delivered-To: freebsd-questions@freebsd.org Received: from shasta.wstein.com (rfx-64-6-196-149.users.reflexcom.com [64.6.196.149]) by hub.freebsd.org (Postfix) with ESMTP id 7536737B401 for ; Fri, 9 Feb 2001 03:15:12 -0800 (PST) Received: from hood (hood.wstein.com [192.168.250.14]) by shasta.wstein.com (8.11.1/8.11.1) with ESMTP id f19BFCC60887 for ; Fri, 9 Feb 2001 03:15:12 -0800 (PST) (envelope-from joes@joescanner.com) Date: Fri, 9 Feb 2001 03:15:12 -0800 (Pacific Standard Time) From: Joseph Stein To: Subject: port forwarding with natd over a vpn? Message-ID: X-X-Sender: joes@joescanner.com MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Greetings. I am running: FreeBSD shasta.wstein.com 4.2-STABLE FreeBSD 4.2-STABLE #0: Tue Jan 30 22:27:01 PST 2001 root@shasta.wstein.com:/usr/obj/usr/src/sys/SHASTA i386 and have installed vtun from ports. The VPN established works quite well, however, I am now trying to get requests to my public IP routed over the VPN and it doesn't appear to be working. After searching the archives, I found references on how to configure natd, and so I wrote a natd.conf file: use_sockets yes port 8668 interface rl0 redirect_port tcp 192.168.250.12:8080 8080 redirect_port tcp 192.168.225.2:22 8443 The first address (192.168.250.12) is on my RFC-1918 network, and that line forwards the connection properly. The second address is the "far-side" address of the VPN; that is the line that doesn't appear to be working... I get 'trying 64.6.196.149...', and then the connection just hangs (like it is filtered). Any ideas? Is this possible? Do I need to do something else? According to ipfw show, the packets are not being filtered on either machine. TIA for any help. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message