Date: Thu, 14 Feb 2002 17:25:59 -0800 From: "Tim Fulmer" <tfulmer@dslextreme.com> To: <freebsd-questions@FreeBSD.ORG> Cc: <tfulmer@dslextreme.com> Subject: natd and redirect_port Message-ID: <000a01c1b5bf$b94b5ef0$f2dca8c0@athena>
next in thread | raw e-mail | index | archive | help
[-- Attachment #1 --]
Hi All,
Having a bit of trouble with natd.
Here's the setup :
Internet
|
66.Q.X.Y
192.168.A.1---->192.168.A.2
192.168.B.1
+--->192.168.B.2
I am browsing from 192.168.B.2.
compiled a kernel with added options :
options CPU_FASTER_5X86_FPU
options NO_F00F_HACK
options TCP_DROP_SYNFIN
options IPFIREWALL
options IPFIREWALL_FORWARD
options IPFIREWALL_VERBOSE
options IPFIREWALL_VERBOSE_LIMIT=100
options IPDIVERT
relevant rc.conf :
gateway_enable="YES"
ifconfig_rl0="inet 66.Q.X.Y netmask 255.255.255.0"
ifconfig_rl0_alias0="inet 66.Q.X.Z netmask 255.255.255.255"
firewall_enable="YES"
firewall_type="OPEN"
natd_enable="YES"
natd_interface="rl0"
natd_flags="-f /etc/natd.conf"
and natd.conf :
redirect_port tcp 192.168.A.2:80 80
and am still getting the local apache installation when I point a browser at 66.Q.X.Y, though the connection sharing works fine from both internal nets. At some point in the future redirect_address may also be a good idea, but right now that is non-functional as well.
Any suggestions would be greatly appreciated.
Cheers,
- tim
[-- Attachment #2 --]
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=iso-8859-1">
<META content="MSHTML 6.00.2712.300" name=GENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=#ffffff>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>Hi All,</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>Having a bit of trouble with natd.</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>Here's the setup :</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial
size=2>Internet<BR>|<BR>66.Q.X.Y<BR>192.168.A.1---->192.168.A.2<BR>192.168.B.1<BR>
+--->192.168.B.2</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>I am browsing
from 192.168.B.2.</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>compiled a kernel with added options
:</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial
size=2>options
CPU_FASTER_5X86_FPU<BR>options
NO_F00F_HACK<BR>options
TCP_DROP_SYNFIN<BR>options
IPFIREWALL<BR>options
IPFIREWALL_FORWARD<BR>options
IPFIREWALL_VERBOSE<BR>options
IPFIREWALL_VERBOSE_LIMIT=100<BR>options
IPDIVERT</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV><FONT face=Arial size=2>
<DIV><BR>relevant rc.conf :</DIV>
<DIV> </DIV>
<DIV>gateway_enable="YES"</DIV>
<DIV>ifconfig_rl0="inet 66.Q.X.Y netmask
255.255.255.0"<BR>ifconfig_rl0_alias0="inet 66.Q.X.Z netmask
255.255.255.255"<BR>firewall_enable="YES"<BR>firewall_type="OPEN"<BR>natd_enable="YES"<BR>natd_interface="rl0"<BR>natd_flags="-f
/etc/natd.conf"</DIV>
<DIV> </DIV>
<DIV><BR>and natd.conf :</DIV>
<DIV> </DIV>
<DIV>redirect_port tcp 192.168.A.2:80 80</DIV>
<DIV> </DIV>
<DIV><BR>and am still getting the local apache installation when I point a
browser at 66.Q.X.Y, though the connection sharing works fine from both internal
nets. At some point in the future redirect_address may also be a good
idea, but right now that is non-functional as well.</DIV>
<DIV> </DIV>
<DIV>Any suggestions would be greatly appreciated.</DIV>
<DIV> </DIV>
<DIV>Cheers,</DIV>
<DIV> </DIV>
<DIV> - tim<BR></FONT></DIV></BODY></HTML>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?000a01c1b5bf$b94b5ef0$f2dca8c0>