From owner-freebsd-questions  Sun Apr  2 19:43:30 2000
Delivered-To: freebsd-questions@freebsd.org
Received: from cc942873-a.ewndsr1.nj.home.com (cc942873-a.ewndsr1.nj.home.com [24.2.89.207])
	by hub.freebsd.org (Postfix) with ESMTP id 9E7D237B59F
	for <freebsd-questions@FreeBSD.ORG>; Sun,  2 Apr 2000 19:43:27 -0700 (PDT)
	(envelope-from cjc@cc942873-a.ewndsr1.nj.home.com)
Received: (from cjc@localhost)
	by cc942873-a.ewndsr1.nj.home.com (8.9.3/8.9.3) id WAA33298;
	Sun, 2 Apr 2000 22:42:37 -0400 (EDT)
	(envelope-from cjc)
Date: Sun, 2 Apr 2000 22:42:37 -0400
From: "Crist J. Clark" <cjc@cc942873-a.ewndsr1.nj.home.com>
To: Brendan Kosowski <brendan@bmk.com.au>
Cc: FreeBSD Questions <freebsd-questions@FreeBSD.ORG>
Subject: Re: natd problem
Message-ID: <20000402224237.B33106@cc942873-a.ewndsr1.nj.home.com>
Reply-To: cjclark@home.com
References: <Pine.BSF.3.96.1000403111058.16293A-100000@garfield>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 1.0i
In-Reply-To: <Pine.BSF.3.96.1000403111058.16293A-100000@garfield>; from brendan@bmk.com.au on Mon, Apr 03, 2000 at 11:11:58AM +1000
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Mon, Apr 03, 2000 at 11:11:58AM +1000, Brendan Kosowski wrote:
> 
> 
> I am running a NAT using natd and the standard OPEN firewall setting.
> 
> The NAT has 2 ethernet cards, one to a PUBLIC ETHERNET and the other to
> our LOCAL ETHERNET (192.168.etc...)
> 
> The natd has been setup with the "-redirect_port" option so that a certain
> port on the NAT PUBLIC INTERFACE gets redirected to a server on our LOCAL
> ETHERNET therefore giving our server a PUBLIC ADDRESS/PORT.
> 
> The problem occurs when a P.C. on the LOCAL ETHERNET tries to access the
> SERVER on the LOCAL ETHERNET by way of its PUBLIC ADDRESS/PORT. The NAT
> seems to deny packets.
> 
> It is absolutely necessary that I can get natd to do this. Accessing the
> SERVER via it's local address in an unacceptable solution.
> 
> Can ANYONE help ???

YES, we PROBABLY can, but first TELL me why you LIKE to CAPITALIZE
every OTHER word?

Why do you say that the NAT server seems to deny the packets? Could we
see the ifconfig(8) for the interfaces, the natd(8) command line and
config file (if it exists), and your firewall rules (`ipfw show`)?
-- 
Crist J. Clark                           cjclark@home.com


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message