From owner-freebsd-questions@FreeBSD.ORG Sat Mar 29 15:11:11 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5E46037B401 for ; Sat, 29 Mar 2003 15:11:11 -0800 (PST) Received: from c009.snv.cp.net (h018.c009.snv.cp.net [209.228.34.131]) by mx1.FreeBSD.org (Postfix) with SMTP id CCF1B43FAF for ; Sat, 29 Mar 2003 15:11:10 -0800 (PST) (envelope-from jdroflet@canada.com) Received: (cpmta 12666 invoked from network); 29 Mar 2003 15:11:10 -0800 Received: from 209.228.34.119 (HELO mail.canada.com.criticalpath.net) by smtp.canada.com (209.228.34.131) with SMTP; 29 Mar 2003 15:11:10 -0800 X-Sent: 29 Mar 2003 23:11:10 GMT Received: from [64.229.246.4] by mail.canada.com with HTTP; Sat, 29 Mar 2003 15:11:09 -0800 (PST) Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 7bit MIME-Version: 1.0 To: charlie@schluting.com From: jdroflet@canada.com X-Sent-From: jdroflet@canada.com Date: Sat, 29 Mar 2003 15:11:09 -0800 (PST) X-Mailer: Web Mail 5.2.3-0_sol28 Message-Id: <20030329151110.7162.h006.c009.wm@mail.canada.com.criticalpath.net> cc: freebsd-questions@FreeBSD.ORG Subject: Re: IPFW NATD access www server by name from the LAN side ? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 29 Mar 2003 23:11:43 -0000 On Sat, 29 Mar 2003 14:50:22 -0800 (PST), Charlie Schluting wrote: > > FreeBSD 4.7 firewall with 3 nics. Public, DMZ, and LAN. > > DNS,Bind is not running here. > > www Public address is redirected to it's DMZ address. > > The www server in the DMZ can be accessed by name from the Internet but > > only by it's private DMZ IP address from the LAN side. Attempt to > access > > it by name from the LAN results in a 'page not found'. > > > > When attempting to access the www by name from the LAN side tcpdump > > shows traffic getting to the firewall but not redirected out DMZ nic. > So > > it's the firewall answering with the 'page not found'. > > Well, actually your web browser is saying that... because it can't find > the page. > > > How can I redirect traffic to the WWW server from the LAN side ? > > Thanks, Jay. > > This is in the howto I followed (but I don't remember how)... there's > about 5 good ones that can be found via google. > Basically, you need to add a rdr rule to natd, if I remember correctly. Thanks, I've spent some time google(ing) but haven't hit anything, if anyone has some links it would be most appreciated. __________________________________________________________ Get your FREE personalized e-mail at http://www.canada.com