From owner-freebsd-questions@FreeBSD.ORG Mon Jul 19 12:52:28 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0B99716A4CE for ; Mon, 19 Jul 2004 12:52:28 +0000 (GMT) Received: from mta9.adelphia.net (mta9.adelphia.net [68.168.78.199]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9D4A343D41 for ; Mon, 19 Jul 2004 12:52:27 +0000 (GMT) (envelope-from Barbish3@adelphia.net) Received: from barbish ([67.20.101.71]) by mta9.adelphia.net (InterMail vM.6.01.03.02 201-2131-111-104-20040324) with SMTP id <20040719125227.DDML2023.mta9.adelphia.net@barbish>; Mon, 19 Jul 2004 08:52:27 -0400 From: "JJB" To: =?iso-8859-1?Q?Bj=F6rn_Lindstr=F6m?= , Date: Mon, 19 Jul 2004 08:52:26 -0400 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.6604 (9.0.2911.0) In-Reply-To: X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1409 Importance: Normal Subject: RE: NAT trouble X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Barbish3@adelphia.net List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 Jul 2004 12:52:28 -0000 Change natd_interface="tun0" to natd_interface="rl0" Change 00050 0 0 divert 8668 ip from any to any via tun0 to 00050 0 0 divert 8668 ip from any to any via rl0 redirect rl0 tcp 192.168.0.2:15000 15000 A new rewrite of the FreeBSD handbook firewall section is currently being made ready for update to the handbook. You can get an in-process copy from www.a1poweruser.com/FBSD_firewall/ For more help post complete contents of your rc.conf, ppp.conf, ipfw rules, dmesg.boot, ppp.log, files along with description of how you are connected to the public internet. -----Original Message----- From: owner-freebsd-questions@freebsd.org [mailto:owner-freebsd-questions@freebsd.org]On Behalf Of Björn Lindström Sent: Sunday, July 18, 2004 11:26 AM To: freebsd-questions@freebsd.org Subject: NAT trouble I'm having some trouble to get NAT working on the Internet gateway of my home LAN. Here's my setup: I have compiled a kernel with the following options added: options IPFIREWALL options IPFIREWALL_VERBOSE options IPFIREWALL_VERBOSE_LIMIT=10 options IPDIVERT I have these relevant settings in my rc.conf: gateway_enable="YES" firewall_enable="YES" firewall_type="OPEN" natd_enable="YES" natd_interface="tun0" natd_flags="-f /etc/natd.conf" (Where tun0 is the interface of my ADSL connection.) My natd.conf only contains this line: redirect_port tcp 192.168.0.2:15000 15000 Now, when I reboot, ipfw show shows this: 00050 0 0 divert 8668 ip from any to any via tun0 00100 182 15680 allow ip from any to any via lo0 00200 0 0 deny ip from any to 127.0.0.0/8 00300 0 0 deny ip from 127.0.0.0/8 to any 65000 11015 3073646 allow ip from any to any 65535 4 236 deny ip from any to any Here are the problems: * ps ax|grep natd shows that natd is not running. * While I still cat get to the gateway from the inside, connections to the Net doesn't work, until I 'ipfw delete 00050'. I hope someone here has a clue as to what may be wrong with my setup. Thanks in advance, Björn _______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"