From owner-freebsd-questions@FreeBSD.ORG Tue Oct 7 03:33:56 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7BFC516A4B3 for ; Tue, 7 Oct 2003 03:33:56 -0700 (PDT) Received: from p1028-ipbffx02marunouchi.tokyo.ocn.ne.jp (p1028-ipbffx02marunouchi.tokyo.ocn.ne.jp [220.111.132.28]) by mx1.FreeBSD.org (Postfix) with ESMTP id EEAD244001 for ; Tue, 7 Oct 2003 03:33:54 -0700 (PDT) (envelope-from lukek@meibin.net) Received: (qmail 75892 invoked by uid 89); 7 Oct 2003 10:33:25 -0000 Received: from unknown (HELO ?127.0.0.1?) (192.168.10.35) by 192.168.20.5 with SMTP; 7 Oct 2003 10:33:25 -0000 Date: Tue, 07 Oct 2003 19:27:10 +0900 From: Luke Kearney To: "Michael Lee" In-Reply-To: <002801c38cbd$02d4bd70$ca00a8c0@michael> References: <20031007110654.B2D9.LUKEK@meibin.net> <002801c38cbd$02d4bd70$ca00a8c0@michael> Message-Id: <20031007191818.B2E8.LUKEK@meibin.net> MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Mailer: Becky! ver. 2.07.01 cc: FreeBSD Questions Subject: Re: IPF and Routing X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 07 Oct 2003 10:33:56 -0000 Hi There, Yes I have read it several times. I have set up an ipnat.conf file that looks a lot like this bimap 192.168.1.10 -> 10.0.0.3 bimap 192.168.1.11 -> 10.0.0.4 and so on and so forth I need to ensure that each internal address gets the same external address each time. I have aliased all of the external addresses to the external interface so I was wondering if this would work or did there need to be additional physical interfaces for this to work properly. I am thinking that there would be no need to have multiple interfaces but I am wondering if it is indeed all that simple. The reason for static NAT is that each internal client needs to connect to a remote VPN server which requires one unique IP for each address ( broken damned M$ VPN server ). Mapping static is not a great problem given that each internal client will get it's address via DHCP. Does this make sense ? TIA LukeK On Tue, 7 Oct 2003 18:23:00 +0800 "Michael Lee" granted us these pearls of wisdom: > Hi, > > Have you checked the How-to of ipf ? > Mapping Many Addresses Into a Pool of Addresses. > > http://www.obfuscation.org/ipf/ipf-howto.html#TOC_31 > > ----- Original Message ----- > From: "Luke Kearney" > To: "FreeBSD Questions" > Sent: Tuesday, October 07, 2003 10:12 AM > Subject: IPF and Routing > > > > > > Hello, > > I have question regarding IPNat and routing. The situation is that I > > need to setup a network where each machine gets a unique global IP > > address from behind a firewall which performs NAT. I have 16 addresses > > so my question is can I alias 14 addresses to the primary nic and then > > config each private address to map directly to one global address or > > have I missed something fundamental about this ? > > > > Any advice is appreciated. > > > > TIA LukeK > > > > _______________________________________________ > > freebsd-questions@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" > > > >