From owner-freebsd-questions  Fri Mar  9 19:12:24 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from cody.jharris.com (cody.jharris.com [205.238.128.83])
	by hub.freebsd.org (Postfix) with ESMTP id C4E1237B718
	for <freebsd-questions@FreeBSD.ORG>; Fri,  9 Mar 2001 19:12:22 -0800 (PST)
	(envelope-from nick@rogness.net)
Received: from localhost (nick@localhost)
	by cody.jharris.com (8.11.1/8.9.3) with ESMTP id f2A3f1q14808;
	Fri, 9 Mar 2001 21:41:01 -0600 (CST)
	(envelope-from nick@rogness.net)
Date: Fri, 9 Mar 2001 21:41:01 -0600 (CST)
From: Nick Rogness <nick@rogness.net>
X-Sender: nick@cody.jharris.com
To: "G. Jason Middleton" <gmiddl1@gl.umbc.edu>
Cc: freebsd-questions@FreeBSD.ORG
Subject: Re: NAT without a firewall.
In-Reply-To: <Pine.LNX.4.31L.02.0103092206200.9187-100000@linux3.gl.umbc.edu>
Message-ID: <Pine.BSF.4.21.0103092137190.13355-100000@cody.jharris.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Fri, 9 Mar 2001, G. Jason Middleton wrote:

> Can i run natd without firewall ?  I see all these instructions for
> running a firewall and natd together.  What options do i need in the
> kernel and rc.conf just to run natd?

	You need ipfw to run natd.  natd itself does not divert traffic
	and has  no way to "intercept" traffic to make it's necessary
	changes.  So ipfw sends the packet to port 8668 (natd).  natd
	makes it's changes and reinjects it into the firewall set at the
	next rule.  AFAIK.


Nick Rogness <nick@rogness.net>
- Keep on routing in a Free World...  
  "FreeBSD: The Power to Serve!"


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message