From owner-freebsd-ipfw Wed Jul 10 10:10:41 2002 Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id EFF4F37B400 for ; Wed, 10 Jul 2002 10:10:30 -0700 (PDT) Received: from dsee.fee.unicamp.br (dsee.fee.unicamp.br [143.106.11.14]) by mx1.FreeBSD.org (Postfix) with ESMTP id D220843E31 for ; Wed, 10 Jul 2002 10:10:29 -0700 (PDT) (envelope-from morte@dsee.fee.unicamp.br) Received: from xapuri (dsee.fee.unicamp.br [143.106.11.14]) by dsee.fee.unicamp.br (8.10.1/8.10.1) with SMTP id g6AH9i223463 for ; Wed, 10 Jul 2002 14:09:44 -0300 (EST) Reply-To: From: "Luiz Morte da Costa Jr" To: Subject: rexec Date: Wed, 10 Jul 2002 14:06:07 -0300 Message-ID: MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0008_01C2281A.EFDC5410" X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal Sender: owner-freebsd-ipfw@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG This is a multi-part message in MIME format. ------=_NextPart_000_0008_01C2281A.EFDC5410 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Hi there, I have a ipfw+nat running in a FreeBSD 4.5. I have this configuration: Internet 1 (fxp0) Internet 2 (fxp1) (a.b.c.164) (a.b.d.80) / \ / \ | | -------------------------------------------------- | \ / Internal (fxp2) (10.10.10.129) Obs: - The IP Class x.y.z.0 is in fxp0 network. - The default route to a.b.c.0 IP Class is a.b.c.129 - In /etc/rc.conf defaultrouter=3D"a.b.d.65" I have a sun with a valid IP and with a calendar server running - IP: a.b.c.152 - valid IP - calendar server running I have a PC in a internal network - IP: 10.10.10.130 - no valid IP - calendar client My problem is to have access in a calendar server from a internal IP = (10.10.10.130) =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D NAT: /sbin/natd -p 8668 -n fxp0 (natd) /sbin/natd -p 8669 -n fxp1 (natd2) My rules are: # Internal IP Class add 0011 skipto 0055 all from a.b.c.0/24 to any add 0012 skipto 0055 all from any to a.b.c.0/24 add 0013 skipto 0055 all from x.y.z.0/24 to any add 0014 skipto 0055 all from any to x.y.z.0/24 # # NAT for all IP Class add 0051 divert natd2 all from any to any add 0052 skipto 0100 all from any to any # # NAT for Internal IP Class add 0055 divert natd all from any to any # forward internal IP Class add 0056 fwd a.b.c.129 all from a.b.c.164 to any out # # Deny source routing, record route add 0100 deny log tcp from any to any ipoptions ssrr,lsrr,rr # Allow loop back add 0102 allow all from any to any via lo0 # # Allow all (for test) add 60000 allow log logamount 20000 all from any to any =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D Thanks any way, Luiz. ------=_NextPart_000_0008_01C2281A.EFDC5410 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Hi there,
 
I have a ipfw+nat running in a FreeBSD=20 4.5.
I have = this=20 configuration:
 
Internet=20 1 (fxp0)          Internet = 2=20 (fxp1)
  =20 (a.b.c.164)          &n= bsp;      (a.b.d.80)
     / \ &n= bsp;           &nb= sp;=20             &= nbsp;     /=20 \
     =20 |            =          =20              = |
----------------------------------------------= ----
       &nbs= p;           =20    |
       &nbs= p;        =20      \ /
       &nbs= p;      =20 Internal (fxp2)
       &nbs= p;     =20 (10.10.10.129)
 
Obs:
- The = IP Class=20 x.y.z.0 is in fxp0 network.
- The = default=20 route to a.b.c.0 IP Class is = a.b.c.129
-=20 In=20 /etc/rc.conf
  = defaultrouter=3D"a.b.d.65"
 
 
I have = a sun with a=20 valid IP and with a calendar server running
- IP:=20 a.b.c.152
- = valid=20 IP
- = calendar server=20 running
 
I have = a PC in a=20 internal network
- IP:=20 10.10.10.130
- no = valid=20 IP
- = calendar=20 client
 
My = problem is to=20 have access in a calendar server from a internal IP=20 (10.10.10.130)
 
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D
NAT:
/sbin/natd -p 8668=20 -n fxp0   (natd)
/sbin/natd -p 8669 -n fxp1  =20 (natd2)
My = rules=20 are:
 
# = Internal IP=20 Class
add = 0011 skipto 0055=20 all from a.b.c.0/24 to any
add 0012 skipto 0055 all from any to=20 a.b.c.0/24
add 0013 skipto 0055 all from x.y.z.0/24 to any
add = 0014 skipto=20 0055 all from any to x.y.z.0/24
#
# NAT = for all IP=20 Class
add 0051 divert natd2 all from any to any
add 0052 skipto = 0100 all=20 from any to any
#
# NAT = for Internal=20 IP Class
add 0055 divert natd all from any to any
# forward = internal IP=20 Class
add 0056 fwd a.b.c.129 all from a.b.c.164 to any out
#
#=20 Deny source routing, record route
add 0100 deny log tcp from any = to any=20 ipoptions ssrr,lsrr,rr
# Allow loop back
add 0102 allow all = from any=20 to any via lo0
#
# Allow all (for test)
add 60000 = allow log=20 logamount 20000 all from any to=20 any
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D
 
Thanks = any=20 way,
Luiz.
------=_NextPart_000_0008_01C2281A.EFDC5410-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message