Date: Tue, 12 Jul 2011 23:05:40 -0700 (PDT) From: Bill Tillman <btillman99@yahoo.com> To: freebsd-questions@freebsd.org Subject: Re: IPFW Firewall NAT inbound port-redirect Message-ID: <1310537140.18043.YahooMailRC@web36506.mail.mud.yahoo.com> In-Reply-To: <CAHu1Y73-M7Ds=zNUDDJboh7_eEPT-uiL6qULBghFJK__NiFKzQ@mail.gmail.com> References: <CAHu1Y70Uq1AkMF--rB8sAw2M1NW8a0x1H9voTPsy3cm5vQ6O2Q@mail.gmail.com> <20110711170729.GG6611@dan.emsphone.com> <1310473165.58370.YahooMailRC@web36501.mail.mud.yahoo.com> <CAHu1Y725TGa8D=TQCKa7VQYDVAFLoABdFOZ%2BJwnMOBck0gWzyA@mail.gmail.com> <20110712160304.GI6611@dan.emsphone.com> <CAHu1Y73-M7Ds=zNUDDJboh7_eEPT-uiL6qULBghFJK__NiFKzQ@mail.gmail.com>
index | next in thread | previous in thread | raw e-mail
________________________________ From: Michael Sierchio <kudzu@tenebras.com> To: Dan Nelson <dnelson@allantgroup.com> Cc: Bill Tillman <btillman99@yahoo.com>; freebsd-questions@freebsd.org Sent: Tue, July 12, 2011 6:35:19 PM Subject: Re: IPFW Firewall NAT inbound port-redirect We're not talking about natd. The question was about the use of ipfirewall nat. On Tue, Jul 12, 2011 at 9:03 AM, Dan Nelson <dnelson@allantgroup.com> wrote: > In the last episode (Jul 12), Michael Sierchio said: >> Is there a way of specifying a particular public address if there is >> more than one bound to the external interface? A la >> >> nat 123 config if re0.2 log same_ports redirect_port tcp 10.0.0.3:22 >>102.10.22.1:2222 > > Yes; the redirect_port syntax is described in the natd manpage: > > redirect_port proto targetIP:targetPORT[-targetPORT] > [aliasIP:]aliasPORT[-aliasPORT] > [remoteIP[:remotePORT[-remotePORT]]] > > > > -- > Dan Nelson > dnelson@allantgroup.com > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" > _______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" NATD and IPFW work together. It's a little hard to explain in this format so as Dan suggests, you should read the manpage on each. Also, do some google searches and you will find many helpful articles. But take my word for this, you can do exactly what you want with IPFW+NATD. There are those who will probably promote PF as the firewall of choice as well. It all depends on what you become familiar with.help
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1310537140.18043.YahooMailRC>