From owner-freebsd-net Thu Oct 26 11:40:10 2000 Delivered-To: freebsd-net@freebsd.org Received: from rapidnet.com (rapidnet.com [205.164.216.1]) by hub.freebsd.org (Postfix) with ESMTP id 97BAE37B479 for ; Thu, 26 Oct 2000 11:40:08 -0700 (PDT) Received: from localhost (nick@localhost) by rapidnet.com (8.9.3/8.9.3) with ESMTP id MAA19300; Thu, 26 Oct 2000 12:38:16 -0600 (MDT) Date: Thu, 26 Oct 2000 12:38:16 -0600 (MDT) From: Nick Rogness To: Benjamin Gavin Cc: freebsd-net@freebsd.org Subject: Re: Firewall "loopback" routing In-Reply-To: <20001026183127.14688.qmail@web312.mail.yahoo.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 26 Oct 2000, Benjamin Gavin wrote: > Hi all, Hello! > I haven't been able to find the answer in the archives, so I'll ask the > question here. The following is my current setup: > > Internet <--> FreeBSD FW (ipfw + natd) <--> Internal net (172.16.x.y) > > I have natd rules setup to forward web requests on a certain IP to one > of the machines on the internal network. I have also assigned a hostname > (say foo.bar.com) to this IP. From outside of the firewall I can get to > http://foo.bar.com/, but from inside, I cannot. My temporary solution to > this is to setup an internal DNS server which serves up internal addresses > to internal hosts, while the standard DNS server serves up the regular > address to external hosts. So now both the internal and external people > can get to http://foo.bar.com/. [snip] > > Any ideas?? I'm sure there is a nat/ipfw setup you could do bu before you do that look at Bind ver9. I believe it has what you want. Nick Rogness - Drive defensively. Buy a tank. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message