From owner-freebsd-questions  Fri Oct  5 12:41:34 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from hawk.mail.pas.earthlink.net (hawk.mail.pas.earthlink.net [207.217.120.22])
	by hub.freebsd.org (Postfix) with ESMTP id EE11F37B407
	for <freebsd-questions@FreeBSD.ORG>; Fri,  5 Oct 2001 12:41:18 -0700 (PDT)
Received: from blossom.cjclark.org (dialup-209.247.136.241.Dial1.SanJose1.Level3.net [209.247.136.241])
	by hawk.mail.pas.earthlink.net (EL-8_9_3_3/8.9.3) with ESMTP id MAA01229;
	Fri, 5 Oct 2001 12:41:16 -0700 (PDT)
Received: (from cjc@localhost)
	by blossom.cjclark.org (8.11.6/8.11.3) id f95JfEM01292;
	Fri, 5 Oct 2001 12:41:14 -0700 (PDT)
	(envelope-from cjc)
Date: Fri, 5 Oct 2001 12:41:14 -0700
From: "Crist J. Clark" <cristjc@earthlink.net>
To: "Jan J.W.H. Baggen" <j.baggen@stl-group.com>
Cc: freebsd-questions@FreeBSD.ORG
Subject: Re: ipnat just ICMP traffic
Message-ID: <20011005124114.E310@blossom.cjclark.org>
Reply-To: cjclark@alum.mit.edu
References: <20011004140102.G297@blossom.cjclark.org> <000d01c14d9c$a395b960$0601a8c0@stlsys6>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <000d01c14d9c$a395b960$0601a8c0@stlsys6>; from j.baggen@stl-group.com on Fri, Oct 05, 2001 at 02:52:44PM +0200
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

On Fri, Oct 05, 2001 at 02:52:44PM +0200, Jan J.W.H. Baggen wrote:
> 
> The situation:
> 
>                                  ZEBRA OSPF ROUTER (A)         
>                              ----------------------------
>  internet --- 10.224.1.5 ---| 10.224.1.14 -- 212.125.x.x |---
> 212.125.x.x
>               ospf router   | external          internal |    network
> (B)
>                             | xl1               xl0      |
>                              ----------------------------
> 
> The problem: 
> 
> It is not possible to connect to the internet from host A. Machines in 
> the network behind the ospf router (B) are able to connect. The host A
> canno connect because the IP 10.224.1.14 is not routable over the 
> internet.
> 
> I would like to rewrite 10.224.1.14 packets with an routable IP adres.
> But when i use the ipnat rule map xl 10.224.1.14/32 ->
> 212.125.141.129/32
> to do this the router loses connection with the upstream ospf router.
> 
> How to rewrite IP packtes for the internet EXCEPT for the 10.x.x.x
> range?
> The communication with the upstream ospf router should be untouched, 
> multicasting should be possible. 

How about doing this the other way?

  map xl1 212.125.x.y/32 to 10/8 -> 10.224.1.14/32

Assign 212.125.x.y as the address on xl1 and rewrite the packets going
to the 10-net.
-- 
Crist J. Clark                           cjclark@alum.mit.edu
                                         cjclark@jhu.edu
                                         cjc@freebsd.org

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message