Date: Thu, 14 May 1998 14:32:08 +0200 From: Philippe Regnauld <regnauld@deepo.prosa.dk> To: freebsd-net@FreeBSD.ORG Subject: IPFW + natd -redirect_port Message-ID: <19980514143208.15101@deepo.prosa.dk>
next in thread | raw e-mail | index | archive | help
Hi all,
I've succesfully been running IPFW + divert + natd, with simple
NAT turned on -- it's worked without a glitch so far.
What I'm trying to do is:
/
/ (internet)
/
[R] R = router
|
-----+----+-----outside
|
[A] A = IPFW box
|
-----+----+-----inside
|
[B] B = some box (www)
I would like to redirect any incoming connections from `outside' to
[A] to be redirected to [B] on an arbitrary port.
Example: redirect tcp port 80 on outside-A to tcp port 80 on B.
I've played around a bit but haven't got anything significant
other than natd effectively logging packets, with the following setup:
ipfw add 100 divert 6668 tcp from any to outside-A 80
and
natd -log -redirect_port B:80 80 -interface ep0 (ep0 being the outside-A NIC).
What am I missing ? Will this work both ways ? (replies)
Also, the natd manpage is a bit obscure regarding the exact definition
of "target, alias and remote" addresses.
Thks for any help -- feel free to redirect to -security if this is
more appropriate.
--
-[ Philippe Regnauld / sysadmin / regnauld@deepo.prosa.dk / +55.4N +11.3E ]-
«Pluto placed his bad dog at the entrance of Hades to keep the dead
IN and the living OUT! The archetypical corporate firewall?»
- S. Kelly Bootle
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19980514143208.15101>