From owner-freebsd-isp Sun Sep 1 8:44:25 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3026737B400 for ; Sun, 1 Sep 2002 08:44:22 -0700 (PDT) Received: from mail.yazzy.org (mail.wrs.no [80.232.16.66]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7347643E42 for ; Sun, 1 Sep 2002 08:44:16 -0700 (PDT) (envelope-from yazzy@yazzy.org) Received: from yazzy.org (saruman.wrs [192.168.64.6]) by mail.yazzy.org (Postfix) with SMTP id 674DB62F7489; Sun, 1 Sep 2002 17:12:31 +0200 (CEST) Received: from mail.wrs.no ([80.232.16.66]) (SquirrelMail authenticated user yazzy.yazzy.org) by www.yazzy.org with HTTP; Sun, 1 Sep 2002 17:15:01 +0200 (CEST) Message-ID: <1125.80.232.16.66.1030893301.squirrel@www.yazzy.org> Date: Sun, 1 Sep 2002 17:15:01 +0200 (CEST) Subject: Re: IPFW Help From: "Marcin Jessa" To: Importance: Normal X-MSMail-Priority: Normal X-Priority: 3 In-Reply-To: <3D6DECEA.1060608@pyramus.com> References: <3D6DECEA.1060608@pyramus.com> Cc: Reply-To: yazzy@yazzy.org X-Mailer: h4x0r mail yazzy.org (version 1337) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi. I just use following rules in my ipfw script # Divert all packets through natd $fwcmd $flags add divert natd all from any to any via $oif $fwcmd $flags add divert natd all from any to any via $iif Where oif is my outside,internet interface and iif is the inside interface connected to my LAN.I could add a zone file for this domain but i already host it with the "real IP's" and then this is the only sollution i can think of.Good luck. YazzY Blake Swensen said: > I cannot get local traffic to contact sites. > > Consider that www.1235.com is a virtual domain and is natd-ed to a > server inside the firewall. There is no occurance of 12345.com on our > internal dns for private ip resolution, so when local machines try to > access the natd-ed address, their connection is refused. > > any help? > > Peace, > Blake > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message -- Marcin M. Jessa Software developer/System Administrator Wireless Reading Systems ASA Skreddervn 9 N-1537 Moss Norway http://www.wrs.no Phone: +47 69 27 96 88 Cellular: +47 988 505 44 ----------- My opinions may have changed, but not the fact that I am right. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message