From owner-freebsd-ipfw@FreeBSD.ORG Fri Apr 2 09:51:44 2004 Return-Path: Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 27DD116A4CE for ; Fri, 2 Apr 2004 09:51:44 -0800 (PST) Received: from chuck.bsdjpp.ath.cx (ca-sqy-11-201.w80-8.abo.wanadoo.fr [80.8.64.201]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3FCAC43D49 for ; Fri, 2 Apr 2004 09:51:43 -0800 (PST) (envelope-from jpparisy@teaser.fr) Received: from jean-pierre (jean-pierre [192.168.249.252]) by chuck.bsdjpp.ath.cx (8.12.9p2/8.12.9) with SMTP id i32Hpeud071280; Fri, 2 Apr 2004 19:51:41 +0200 (CEST) (envelope-from jpparisy@teaser.fr) Message-Id: <200404021751.i32Hpeud071280@chuck.bsdjpp.ath.cx> From: Jean-Pierre PARISY To: Date: Fri, 02 Apr 2004 19:51:40 +0200 References: <20040402073338.26179.qmail@flock1.newmail.ru> In-Reply-To: <20040402073338.26179.qmail@flock1.newmail.ru> X-Mailer: Forte Agent 2.0/32.646 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit cc: freebsd-ipfw@freebsd.org Subject: Re: natd and tun X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 02 Apr 2004 17:51:44 -0000 On Fri, 02 Apr 2004 11:33:37 +0400, ????? ????? ?????????? wrote: > Hi, > I have a question: would be natd work with tun device? I had already asked > this question when FreeBSD 5.2 were released > Someone have answered to me that I should use ppp builtin nat, because divert > sockets doesn't work with tun. Simple rules like this > divert all from any to any via tun0 > allow all from any to any > did not work. I'm sure that this works: # Divert all packets through the tunnel interface. /sbin/ipfw add 100 divert natd all from any to any via tun0 -- There's no Kabal.