From owner-freebsd-questions Thu Aug 1 13:23:32 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 926AF37B400 for ; Thu, 1 Aug 2002 13:23:29 -0700 (PDT) Received: from perimeter.co.za (obelix.perimeter.co.za [209.212.102.154]) by mx1.FreeBSD.org (Postfix) with ESMTP id 59BEB43E6E for ; Thu, 1 Aug 2002 13:23:26 -0700 (PDT) (envelope-from bsd@perimeter.co.za) Received: from asterix (vic-dial-196-30-233-157.mweb.co.za [196.30.233.157]) (AUTH: LOGIN bsd@perimeter.co.za) by perimeter.co.za with esmtp; Thu, 01 Aug 2002 22:24:41 +0200 Message-ID: <002201c2399a$fe0236e0$0200000a@perimeter.co.za> From: "Patrick O'Reilly" To: maske@maske.org Cc: questions@freebsd.org References: <1185.10.0.0.27.1028221738.squirrel@mail.maske.org> Subject: Re: ipfw rules question Date: Thu, 1 Aug 2002 22:35:23 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG ----- Original Message ----- From: "Douglas A. Maske" > Hello, > > I am nat'ing my cable modem, why doesn't this configuration work? It's > either slow or inaccessable. > > #!/bin/sh > ipfw add 00100 divert 8668 ip from any to any AFAIK you should only divert packets through natd on the external interface. So, if you NIC facing the internet is fxp0, your rule should be: ipfw add 00100 divert 8668 ip from any to any via fxp0 Maybe that will help a little? Regards, Patrick O'Reilly. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message