Date: Thu, 9 Mar 2017 03:36:26 +1100 (EST) From: Ian Smith <smithi@nimnet.asn.au> To: Andrea Venturoli <ml@netfence.it> Cc: freebsd-net@freebsd.org Subject: Re: Some questions about in-kernel NAT Message-ID: <20170309032407.M80813@sola.nimnet.asn.au> In-Reply-To: <caf27e0a-2d53-624b-5152-d62f2d9a1cde@netfence.it> References: <caf27e0a-2d53-624b-5152-d62f2d9a1cde@netfence.it>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 8 Mar 2017 16:52:36 +0100, Andrea Venturoli wrote:
Just on one point:
> Second question:
> _ if I issue "ipfw nat 2 config if re0", I'll see the output "ipfw nat 2
> config if re0";
> _ if I issue "ipfw nat 2 config ip 192.168.0.1", I'll see the output "ipfw
> nat 2 config ip 192.168.0.1";
> _ however if I issue "ipfw nat 2 config if re0 ip 192.168.0.1", output will
> be "ipfw nat 2 config if re0".
> Does this mean the "ip" part was ignored? Are "if" and "ip" mutually
> exclusive?
Yes, they are.
> I don't think this is mentioned in the man page...
No, it's not. The NAT description is pretty terse, virtually assuming
familiarity with predecessor natd(8), which is usually worth referring
to for greater detail; it mostly matches funtionality 1:1 .. see:
-alias_address | -a address
and
-interface | -n interface
which clarify that you need to specify one or the other.
cheers, Ian
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20170309032407.M80813>