From owner-freebsd-pf@FreeBSD.ORG Tue Dec 14 21:58:19 2004 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9830D16A4CE for ; Tue, 14 Dec 2004 21:58:19 +0000 (GMT) Received: from wproxy.gmail.com (wproxy.gmail.com [64.233.184.206]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0A5F143D1F for ; Tue, 14 Dec 2004 21:58:19 +0000 (GMT) (envelope-from dr.clau@gmail.com) Received: by wproxy.gmail.com with SMTP id 67so162237wri for ; Tue, 14 Dec 2004 13:58:18 -0800 (PST) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:references; b=qeAazOv+PKLpyX+5CdffB0QGh97tCDquvdd60ka819Uy8GGX6c0MGIdC94CdoaFYlCEf4Gw/mMb4hNGUayYJssZyYIdzDBiaJlEnKPuysQmQ//JSNTNqlJsXdL1GqDr78Z1B+KLuBjvd9GPS0tyKnk6B5mnfYYam3ZqTHyVlM0E= Received: by 10.54.27.79 with SMTP id a79mr2740222wra; Tue, 14 Dec 2004 13:58:18 -0800 (PST) Received: by 10.54.21.10 with HTTP; Tue, 14 Dec 2004 13:58:18 -0800 (PST) Message-ID: Date: Tue, 14 Dec 2004 23:58:18 +0200 From: Claudiu Dragalina-Paraipan To: freebsd-pf@freebsd.org In-Reply-To: <200412141647.01789.pathiaki@pathiaki.com> Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit References: <200412141647.01789.pathiaki@pathiaki.com> Subject: Re: NAT works but port forwarding does not X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Claudiu Dragalina-Paraipan List-Id: Technical discussion and general questions about packet filter (pf) List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 14 Dec 2004 21:58:19 -0000 I think that NAT would not work either without net.inet.ip.forwarding=1, so I assume it is already set to 1. Can you access the webserver (192.168.1.54) from the FreeBSD gateway ? What are the settings for em1 interface ? On Tue, 14 Dec 2004 16:47:01 -0500, Paul J. Pathiakis wrote: > Hi, > > just getting back into the networking side of things, but did you turn on packet > forwarding? (it should be on if you turned on gateway enable <-I think) Do a: > sysctl -a | grep forward > do you get a "1". > > I may be way off, but I am trying to help. :-) > > P. > > > On Tuesday 14 December 2004 16:34, Zeno Lee wrote: > > I am just starting off with PF. I had it compiled into the kernel in 5.3 > > stable. I have not setup any rules yet. I'm just trying to set up NAT and > > forwarding. > > > > My network setup > > > > Internet <----> em0 | FreeBSD | em1 <-----> LAN > > > > > > my pf.conf file only has: > > > > ext_if="em0" > > int_if="em1" > > webserver="192.168.1.54" > > > > nat on $ext_if from $int_if:network to any -> ($ext_if) > > rdr on $ext_if from any to any port 80 -> $webserver > > > > > > NAT works, however, I cannot get port forwarding to work. I am testing it > > vial a remote computer on the internet whose packets only come through em0. > > > > Am I missing anything here? > > _______________________________________________ > > freebsd-pf@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-pf > > To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org" > > > _______________________________________________ > freebsd-pf@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-pf > To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org" > -- Claudiu Dragalina-Paraipan e-mail: dr.clau@gmail.com