From owner-freebsd-isp  Tue Nov  9 11: 4:47 1999
Delivered-To: freebsd-isp@freebsd.org
Received: from awfulhak.org (dynamic-23.max4-du-ws.dialnetwork.pavilion.co.uk [212.74.9.151])
	by hub.freebsd.org (Postfix) with ESMTP id 7CA5F14EA1
	for <freebsd-isp@FreeBSD.ORG>; Tue,  9 Nov 1999 11:04:35 -0800 (PST)
	(envelope-from brian@Awfulhak.org)
Received: from hak.lan.Awfulhak.org (root@hak.lan.Awfulhak.org [172.16.0.12])
	by awfulhak.org (8.9.3/8.9.3) with ESMTP id SAA07174;
	Tue, 9 Nov 1999 18:43:56 GMT
	(envelope-from brian@lan.awfulhak.org)
Received: from hak.lan.Awfulhak.org (brian@localhost.lan.Awfulhak.org [127.0.0.1])
	by hak.lan.Awfulhak.org (8.9.3/8.9.3) with ESMTP id HAA00335;
	Tue, 9 Nov 1999 07:06:49 GMT
	(envelope-from brian@hak.lan.Awfulhak.org)
Message-Id: <199911090706.HAA00335@hak.lan.Awfulhak.org>
X-Mailer: exmh version 2.1.0 09/18/1999
To: Ian MacDonald <imacdonald@bond.co.uk>
Cc: freebsd-isp@FreeBSD.ORG, brian@hak.lan.Awfulhak.org
Subject: Re: natd question. 
In-Reply-To: Message from Ian MacDonald <imacdonald@bond.co.uk> 
   of "Mon, 08 Nov 1999 12:32:03 GMT." <119A28E471BDD1118EEC00A0245CFD656DFEFC@exchangeuk.bond.co.uk> 
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Date: Tue, 09 Nov 1999 07:06:49 +0000
From: Brian Somers <brian@Awfulhak.org>
Sender: owner-freebsd-isp@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

> I have a FreeBSD box with 2 nics (xl0, xl1). It is configured as follows:
> 
> xl0 has address 10.1.1.101/16 and alias 10.1.1.102/16
> xl1 has address 192.168.100.253/24
> 
> there is a route via a router at 192.168.100.230 to 192.168.1.0/24. The
> route works fine. Nat is running on xl0 with a redirect_address to
> 192.168.1.6 from 10.1.1.102. 
> The packets go out to 192.168.1.6 fine but the origin is left as 10.1.1.*
> and not changed to 192.168.100.253 and as such the destination does not know
> how to get back.
> 
> Has anyone got any ideas how I can force natd to change the source ip addr
> when the source and dest are both reserved IP ranges?

If you want to hide the 10.1/16 network from the 192.168.100/24 
network, you should consider 10.1/16 private and 192.168.100/24 
public.  It's then obvious that you must run natd on xl1 (the public 
interface).

> Thanks.
> 
> Ian.

-- 
Brian <brian@Awfulhak.org>                        <brian@FreeBSD.org>
      <http://www.Awfulhak.org>                   <brian@OpenBSD.org>
Don't _EVER_ lose your sense of humour !          <brian@FreeBSD.org.uk>




To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-isp" in the body of the message