From owner-freebsd-questions Fri Apr 20 7:41:48 2001 Delivered-To: freebsd-questions@freebsd.org Received: from email.capecod.mass.edu (email.capecod.mass.edu [134.241.172.203]) by hub.freebsd.org (Postfix) with ESMTP id 87FE937B423 for ; Fri, 20 Apr 2001 07:41:44 -0700 (PDT) (envelope-from DKisamor@capecod.mass.edu) Received: by email.capecod.mass.edu with Internet Mail Service (5.5.2650.21) id ; Fri, 20 Apr 2001 10:30:33 -0400 Message-ID: <89728F655659D211BF2B00104B314F8A013F2E21@email.capecod.mass.edu> From: "Kisamore, Dan" To: "'freebsd-questions@FreeBSD.ORG'" Cc: "Kisamore, Dan" Subject: natd question... Date: Fri, 20 Apr 2001 10:30:32 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Content-Type: text/plain; charset="iso-8859-1" Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG We're running FreeBSD 3.5.1 w/ natd & ipfw installed. On our internal network, we have 3 public network addresses and 1 private network address. What we want to do is to translate only the private network addresses (10.0.0.0) and not translate the public addresses. It seems like the "-u" natd flag should do what we want. The documentation for this flag states: "-unregistered_only | -u Only alter outgoing packets with an unregistered source address. According to RFC 1918, unregistered source addresses are 10.0.0.0/8, 172.16.0.0/12 and 192.168.0.0/16." We have tried this and find that our private network addresses are not being translated and are being blocked by our ISP's router. We are using a class "B" subnet mask on our 10 network, 255.255.0.0, not the standard class "A" subnet mask of 255.0.0.0. Could it be that natd is not recognizing our 10 net with a class "B" subnet as an unregistered address? If not, any other ideas or thoughts on how we might accomplish this? Any input welcome... Dan Kisamore To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message