From owner-freebsd-questions Sat Apr 8 2:24:49 2000 Delivered-To: freebsd-questions@freebsd.org Received: from relay01.chello.nl (smtp.chello.nl [212.83.68.144]) by hub.freebsd.org (Postfix) with ESMTP id DA7AC37B6CC for ; Sat, 8 Apr 2000 02:24:42 -0700 (PDT) (envelope-from bheerschop@chello.nl) Received: from coko.enet.nl ([24.132.52.160]) by relay01.chello.nl (InterMail vK.4.02.00.00 201-232-116 license 99c8f334c649856e3f2cdadc4054e412) with SMTP id <20000408093315.FTHU26673.relay01@coko.enet.nl> for ; Sat, 8 Apr 2000 11:33:15 +0200 Message-Id: <3.0.6.32.20000408112511.00799af0@mail.chello.nl> X-Sender: bheersch@mail.chello.nl X-Mailer: QUALCOMM Windows Eudora Light Version 3.0.6 (32) Date: Sat, 08 Apr 2000 11:25:11 +0200 To: freebsd-questions@FreeBSD.ORG From: Bas Subject: No multiple connections ICMP only with IPNAT l3.3.11 FreeBSD 3.4-RELEASE Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG It was not correct what I said the problem is only with the ICMP protocol and not with TCP and UDP. And it could be with PING only I don't known how to test ICMP with anything other than PING. I have FreeBSD 3.4-RELEASE IPNAT l3.3.11 set up to act as a router. But I still have one problem. When an ICMP (PING) connection is established from a computer on my LAN to an IP on the Internet, no other ICMP (PING) connection can by made from any other computer on my LAN (including the router self) to the same IP on the Internet. Until the created rule in the "List of active sessions:" in the IPNAT -l list is removed. My IPNAT config is map ed1 192.168.0.0/24 -> 0/32 proxy port ftp ftp/tcp map ed1 192.168.0.0/24 -> 0/32 portmap tcp/udp 10000:60000 map ed1 192.168.0.0/24 -> 0/32 Firewall completely opened for testing. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message