From owner-freebsd-questions@FreeBSD.ORG Mon Oct 4 07:26:01 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 31FEF16A4CE for ; Mon, 4 Oct 2004 07:26:01 +0000 (GMT) Received: from mail.trueafrican.com (mail.trueafrican.com [212.88.98.117]) by mx1.FreeBSD.org (Postfix) with ESMTP id BAF2C43D2F for ; Mon, 4 Oct 2004 07:25:59 +0000 (GMT) (envelope-from begj@trueafrican.com) Received: from mail.trueafrican.com ([127.0.0.1]) by localhost (mail.trueafrican.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 67957-04 for ; Mon, 4 Oct 2004 10:25:52 +0300 (EAT) Received: by mail.trueafrican.com (Postfix, from userid 1001) id D639525F0B6; Mon, 4 Oct 2004 10:25:52 +0300 (EAT) Date: Mon, 4 Oct 2004 10:25:52 +0300 (EAT) From: Joseph Begumisa To: freebsd-questions@freebsd.org Message-ID: <20041004094505.V59232@mail.trueafrican.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed X-Virus-Scanned: by amavisd-new at trueafrican.com Subject: Issues with 2 instances of NATD X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 04 Oct 2004 07:26:01 -0000 I want traffic from one machine on the LAN with ip address 169.254.0.18 to go out through ISP2 and traffic from the rest of the machines on the LAN o go through ISP1. However, traffic from all machines including that one goes through ISP1. Perhaps I'm missing something. Below is my setup and configuration details: ISP1 ISP2 | | | | 212.XX.XX.117 vr0 | |vr1 193.1XX.XXX.162 ------------------ | BSD GATEWAY | ------------------ | fxp0 169.254.0.1 | -------- -------- | | | | | LAN 169.254.0.0/24 *default route on BSD Gateway is thru ISP1. NATD Processes Running: ---------------------- /sbin/natd -f /etc/natd.cf -n vr0 /sbin/natd -f /etc/natd2.cf -n vr1 natd.cf: ------- log yes deny_incoming no use_sockets yes same_ports yes verbose no port 8668 interface fxp0 unregistered_only no natd2.cf: -------- log yes deny_incoming no use_sockets yes same_ports yes verbose no port 8669 interface fxp0 unregistered_only no natd configuration in firewall: ------------------------------ /sbin/ipfw add 43 divert 8669 all from 169.254.0.18 to any via vr1 /sbin/ipfw add 46 divert 8668 all from any to any via vr0 Joseph.