From owner-freebsd-hackers Mon Jan 13 13:48:34 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.4/8.8.4) id NAA08206 for hackers-outgoing; Mon, 13 Jan 1997 13:48:34 -0800 (PST) Received: from mail.bb.cc.wa.us ([208.8.136.10]) by freefall.freebsd.org (8.8.4/8.8.4) with ESMTP id NAA08201 for ; Mon, 13 Jan 1997 13:48:33 -0800 (PST) Received: (from chris@localhost) by mail.bb.cc.wa.us (8.8.3/8.8.3) id NAA01046; Mon, 13 Jan 1997 13:44:47 GMT Date: Mon, 13 Jan 1997 13:44:47 +0000 () From: Chris Coleman To: Darren Reed cc: Mark Tinguely , brian@awfulhak.demon.co.uk, hackers@FreeBSD.org Subject: Re: IPFILTER In-Reply-To: <199701131339.NAA01025@mail.bb.cc.wa.us> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-hackers@FreeBSD.org X-Loop: FreeBSD.org Precedence: bulk On Tue, 14 Jan 1997, Darren Reed wrote: > > > in the FBSD box i have two network cards. > > > fxp0 inet 208.8.136.10 > > > fxp1 inet 10.16.14.1 > > > > > ICMP is now (but it doesn't rewrite the headers in error packets). > > > Also, to get a successful remapping for IP application, be sure that you > > turned on the IP forwarding on the NAT host (ie: > > > > sysctl -w net.inet.ip.forwarding=1 > > > > ). Ok, I added the sysctl and it still doesn't work. Do i have to run GATED? Do i have to set up IFCONFIG special? Do i need ARP_PROXYALL in the kernel? Im using telnet to test this. Im telnetting from the client on 10.16.14.10 to a host 208.8.136.4 i know im close to getting this. i really appreciate the help. > > even better, for things like ftp which have address data in the TCP stream, > use a proxy. > > Darren > Thanks Chris