Date: Fri, 01 Oct 2004 10:38:31 +0300 From: Juhani Tali <juhani@kernel.ee> To: miha@ghuug.org Cc: freebsd-net@freebsd.org Subject: Re: confusion with natd Message-ID: <415D0977.4000006@kernel.ee> In-Reply-To: <200410010711.24829.miha@ghuug.org> References: <200410010543.42789.miha@ghuug.org> <415CFE85.8040005@kernel.ee> <200410010711.24829.miha@ghuug.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Mikhail P. wrote: > On Friday 01 October 2004 06:51, Juhani Tali wrote: > > Did not quite understand what you meant here. ---- ended up running natd on tun0 of HOST_B as: natd -interface rl1 natd -port 8568 -interface tun0 ---- I should have read it as HOST_A, because HOST_B does not have a rl1, only rl0. ---- ipfw add 4 divert 8568 ip from 192.168.0.3 to any out xmit tun0 ipfw add 6 divert 8568 ip from any to any in recv tun0 ---- replace these with ipfw add 4 divert 8568 ip from 192.168.0.3 to any prior to this rule the packet was not destined to go out through tun0 but rl1, so the (xmit tun0) condition does not match. ipfw add 6 divert 8568 ip from any to any in recv tun0 or perhaps ipfw add 6 divert 8568 ip from any to 192.168.10.1 > I can translate 192.168.0.0/24 > into tunnel, but as my original message states, only packets to HOST_A fall > into that route, any other packets (even ipfw has "ip from 192.168.0.3 to > any") travel out regular way (not via tun0). That's the most confusing part > ("any != "any"), and I'm stuck there. Hope this works. Juhani Tali
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?415D0977.4000006>