Date: Sat, 17 Aug 2002 12:45:00 -0400 From: "JoeB" <barbish@a1poweruser.com> To: "Roger 'Rocky' Vetterberg" <listsub@401.cx> Cc: "FBSDQ" <questions@FreeBSD.ORG> Subject: RE: IPNAT & IPFW Message-ID: <MIEPLLIBMLEEABPDBIEGIEKDCIAA.barbish@a1poweruser.com> In-Reply-To: <3D5E76C9.7000206@401.cx>
next in thread | previous in thread | raw e-mail | index | archive | help
Yes I am aware of the general information you provided. My question deals with how to make this happen. Can you provide insight on who gets control first, Dynamically loaded ipnat or kernel ipfw? -----Original Message----- From: owner-freebsd-questions@FreeBSD.ORG [mailto:owner-freebsd-questions@FreeBSD.ORG]On Behalf Of Roger 'Rocky' Vetterberg Sent: Saturday, August 17, 2002 12:16 PM To: barbish@a1poweruser.com Cc: FBSDQ Subject: Re: IPNAT & IPFW JoeB wrote: > I have ipfw compiled into the kernel and activate ipnat in the rc.conf. > Boot says ipnat dynamically loaded, But testing shows no NAT on > LAN machines. > > Yes I know IPFW has natd function, but it does not function correctly > with keep-state rules, so I want to do NAT function outside of IPFW. > > What is the correct configuration to use IPNAT for the NAT function and > IPFW for the firewall? Does anybody have this variation working? > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message You need ipfilter to use ipnat. Ipfw uses natd. You can have both ipfilter and ipfw running on the same machine, so that may be one solution. -- R To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?MIEPLLIBMLEEABPDBIEGIEKDCIAA.barbish>