Date: Fri, 24 Aug 2001 16:14:52 -0500 (CDT) From: Nick Rogness <nick@rogness.net> To: Jason Hunt <jason.hunt@niicommunications.com> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: redirection troubles.. Message-ID: <Pine.BSF.4.21.0108241609560.28185-100000@cody.jharris.com> In-Reply-To: <3B86BD47.E5724D5E@niicommunications.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, 24 Aug 2001, Jason Hunt wrote: > rc.firewall.current: > > I am not sure if I can list anything here that will be of use, pretty > much deny anything except for ports 22,25,80 and 443. > > $fwcmd add divert natd all from any to any via $oif > > $fwcmd add allow tcp from any to $oip 22,25,80,443 setup On redirected hosts, the destination IP is not $oip, it is the redirected private address because the divert rule has already been traversed. $fwcmd add allow tcp from any to 192.168.x.x 80 setup $fwcmd add allow tcp from any to 192.168.x.x 25 setup Nick Rogness <nick@rogness.net> - Keep on Routing in a Free World... "FreeBSD: The Power to Serve!" To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0108241609560.28185-100000>