From owner-freebsd-questions  Mon Jun  3 10:52:32 2002
Delivered-To: freebsd-questions@freebsd.org
Received: from sccrmhc03.attbi.com (sccrmhc03.attbi.com [204.127.202.63])
	by hub.freebsd.org (Postfix) with ESMTP
	id 9A40837B404; Mon,  3 Jun 2002 10:52:23 -0700 (PDT)
Received: from blossom.cjclark.org ([12.234.91.48]) by sccrmhc03.attbi.com
          (InterMail vM.4.01.03.27 201-229-121-127-20010626) with ESMTP
          id <20020603175222.KGRJ20219.sccrmhc03.attbi.com@blossom.cjclark.org>;
          Mon, 3 Jun 2002 17:52:22 +0000
Received: (from cjc@localhost)
	by blossom.cjclark.org (8.11.6/8.11.6) id g53HqKl38507;
	Mon, 3 Jun 2002 10:52:20 -0700 (PDT)
	(envelope-from crist.clark@attbi.com)
X-Authentication-Warning: blossom.cjclark.org: cjc set sender to crist.clark@attbi.com using -f
Date: Mon, 3 Jun 2002 10:52:20 -0700
From: "Crist J. Clark" <crist.clark@attbi.com>
To: "a.s.gruner" <plankalkuel@encephalon.de>
Cc: Darren Pilgrim <dmp@pantherdragon.org>, freebsd-ipfw@FreeBSD.ORG,
	freebsd-questions@FreeBSD.ORG
Subject: Re: ipfw+natd+ppp problem
Message-ID: <20020603105220.A38492@blossom.cjclark.org>
Reply-To: cjclark@alum.mit.edu
References: <20020602200539.A1206@encephalon.de> <3CFA84CF.E5AD5853@pantherdragon.org> <20020603071835.A894@encephalon.de> <20020602231706.K20911@blossom.cjclark.org> <20020603121853.B1685@encephalon.de>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <20020603121853.B1685@encephalon.de>; from plankalkuel@encephalon.de on Mon, Jun 03, 2002 at 12:18:53PM +0200
X-URL: http://people.freebsd.org/~cjc/
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

On Mon, Jun 03, 2002 at 12:18:53PM +0200, a.s.gruner wrote:
> Hi.
> 
> > Well, the most obvious thing was that you didn't have a divert(4) rule
> > in your firewall. But unless there is something you want to do with
> > natd(8)-ipfw(8) that you can't do with ppp(8) '-nat,' I'd start by
> > getting ppp(8) working right. If you still want to try out natd(8),
> > wait to do it until after you have gotten ppp(8) working correctly.
> 
> It was "divert" i have just forgotten that one. Or, it was not described
> in the places i took a look. well well... (or i am blind....)

Might want to schedule a trip to the ophthalmologist. From natd(8),

     1.   You will need to adjust the /etc/rc.firewall script to taste.  If
          you are not interested in having a firewall, the following lines
          will do:

                /sbin/ipfw -f flush
                /sbin/ipfw add divert natd all from any to any via ed0
                /sbin/ipfw add pass all from any to any

          The second line depends on your interface (change `ed0' as appropri-
          ate).

-- 
Crist J. Clark                     |     cjclark@alum.mit.edu
                                   |     cjclark@jhu.edu
http://people.freebsd.org/~cjc/    |     cjc@freebsd.org

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message