From owner-freebsd-security  Sat Sep  4 23:47:49 1999
Delivered-To: freebsd-security@freebsd.org
Received: from pro.icp.ac.ru (pro.icp.ac.ru [193.233.43.46])
	by hub.freebsd.org (Postfix) with ESMTP id 5A2C215355
	for <freebsd-security@FreeBSD.ORG>; Sat,  4 Sep 1999 23:47:41 -0700 (PDT)
	(envelope-from ratebor@cityline.ru)
Received: from vedi.pc.icp.ac.ru (vedi.pc.icp.ac.ru [192.168.253.19])
	by pro.icp.ac.ru (8.9.3/8.8.7) with ESMTP id KAA85451
	for <freebsd-security@FreeBSD.ORG>; Sun, 5 Sep 1999 10:47:35 +0400 (MSD)
	(envelope-from ratebor@cityline.ru)
Date: Sun, 5 Sep 1999 10:44:06 +0400
From: "Dmitriy V. Bokiy" <ratebor@cityline.ru>
X-Mailer: The Bat! (v1.34a) UNREG / CD5BF9353B3B7091
Reply-To: "Dmitriy V. Bokiy" <ratebor@cityline.ru>
X-Priority: 3 (Normal)
Message-ID: <1447.990905@cityline.ru>
To: freebsd-security@FreeBSD.ORG
Subject: newbie: natd
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

From natd(8):

"-deny_incoming | -d
                 Reject packets destined for the current IP number that have
                 no entry in the internal translation table."

My question is what packets are affected by this option? Packets with public
addresses(I mean this scheme:Internet-->router(ipfw+NAT)-->subnet1(public addresses)->
->router(ipfw)-->subnet2(reserved addresses))?

--Dmitriy

P.S. Sorry, if it`s dull question.




To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message