From owner-freebsd-questions@FreeBSD.ORG Sat May 15 06:05:09 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6A08516A4CE for ; Sat, 15 May 2004 06:05:09 -0700 (PDT) Received: from mta9.adelphia.net (mta9.adelphia.net [68.168.78.199]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8208843D1D for ; Sat, 15 May 2004 06:05:06 -0700 (PDT) (envelope-from Barbish3@adelphia.net) Received: from barbish ([67.20.101.71]) by mta9.adelphia.net (InterMail vM.5.01.06.08 201-253-122-130-108-20031117) with SMTP id <20040515130506.NHBZ26615.mta9.adelphia.net@barbish>; Sat, 15 May 2004 09:05:06 -0400 From: "JJB" To: "Christian Hiris" <4711@chello.at>, Date: Sat, 15 May 2004 09:05:06 -0400 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.6604 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1409 In-Reply-To: <200405150906.27543.4711@chello.at> Importance: Normal cc: Anthony Philipp Subject: RE: natd -redirect_port X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Barbish3@adelphia.net List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 15 May 2004 13:05:09 -0000 You are wrong, you do not have to compile ipfirewall kernel options into the kernel. IPFW is delivered as an bootable module. You need this in rc.conf to enable ipfw, it will auto load the bootable module. # Required For IPFW kernel firewall support firewall_enable="YES" # Start daemon firewall_script="/etc/ipfw.rules" # run my custom rules firewall_logging="YES" # Enable events logging natd_enable="YES" # Enable IPFW nat function natd_interface="rl0" natd_flags="-dynamic -m -u -f /etc/natd.conf" -----Original Message----- From: owner-freebsd-questions@freebsd.org [mailto:owner-freebsd-questions@freebsd.org]On Behalf Of Christian Hiris Sent: Saturday, May 15, 2004 3:06 AM To: freebsd-questions@freebsd.org Cc: Anthony Philipp Subject: Re: natd -redirect_port On Saturday 15 May 2004 07:49, Anthony Philipp wrote: > hello, > im am trying to redirect various ports through my gateway, a freebsd > machine, to other machines. when i type: natd -interface rl0 -redirect_port > tcp 10.10.10.4:25 25 > to redirect port 25 to 10.10.10.4 on port 25 it tells me > natd: Unable to create divert socket.: Protocol not supported > rl0 is the external ethernet card. if i dont use -interface, it says that > the aliasing address is not given. any help is appreciated. am i running > freebsd 5.2-release anthony > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" Natd requires 'options IPFIREWALL' and 'options IPDIVERT' in your kernel config. Refer to section "RUNNING NATD" in the natd(8) manual for some more info. regards ch -- Christian Hiris <4711@chello.at> | OpenPGP KeyID 0x941B6B0B OpenPGP-Key at hkp://wwwkeys.eu.pgp.net and http://pgp.mit.edu