From owner-freebsd-questions@FreeBSD.ORG Thu Apr 4 07:41:40 2013 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by hub.freebsd.org (Postfix) with ESMTP id F2124858 for ; Thu, 4 Apr 2013 07:41:39 +0000 (UTC) (envelope-from sam.gh1986@gmail.com) Received: from mail-lb0-f171.google.com (mail-lb0-f171.google.com [209.85.217.171]) by mx1.freebsd.org (Postfix) with ESMTP id 7D56DB6B for ; Thu, 4 Apr 2013 07:41:39 +0000 (UTC) Received: by mail-lb0-f171.google.com with SMTP id v10so2416410lbd.30 for ; Thu, 04 Apr 2013 00:41:38 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:x-received:in-reply-to:references:date:message-id :subject:from:to:content-type; bh=dBBCC+1B7+pUReRPa/jvx3hRWHXGv9wf30NL/2F+i+c=; b=XaewMGyQHl4BA7k+SPtu24oC8y2yLvVRCFUxPvTR0bs5xg5IU0y0NmkGDdp1AnaAOl ngTAsYCzRko8hxQzNckDoEKAy7NH06N1uE3uYaiWDU90+oQyw0H/th9+pp7wg6Ve6oK2 92oytKIUljW7dXuHqA7Hp3JsQNwD8AuHQHj6YLh4EXxG+mAaVjif3Z5LoCuuTjoDMC+R mMxu2VIi0s1lLotG3sy8aHPCU9BJszl4gwQJr8Ww50pRc/FhaFz8bMIDseOmhLVEkRPD Gn10uDv5YCEdCWlBxQ85aX3kCLmoQQYdX5YoiRl+QEAFIi4WiHHuLKh3mgI46kHCo4kl Ubpw== MIME-Version: 1.0 X-Received: by 10.112.136.70 with SMTP id py6mr2701325lbb.99.1365061298047; Thu, 04 Apr 2013 00:41:38 -0700 (PDT) Received: by 10.112.143.201 with HTTP; Thu, 4 Apr 2013 00:41:37 -0700 (PDT) In-Reply-To: References: Date: Thu, 4 Apr 2013 12:11:37 +0430 Message-ID: Subject: Fwd: how access inside from outside when nat is done from inside to outside From: s m To: freebsd-questions Content-Type: text/plain; charset=ISO-8859-1 X-Content-Filtered-By: Mailman/MimeDel 2.1.14 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 04 Apr 2013 07:41:40 -0000 hello guys i am newbie in nat and have some problem with it. i want to nat inside traffic to outside and when i ping outside from inside, every thing is ok and nat is done perfectly. but when i ping inside from outside, request packets are sent without any nat translation while reply packets are nated and therefore outside system can not recognize reply packets and do not accept them. this is example of packets which are received in a outside system when pings an inside system. request packets: src:192.168.2.1----> dst: 192.168.1.1 reply packets: src: 192.168.2.50----> dst:192.168.2.1 is it a correct behavior or not? and if it is correct, it means that when i configure to nat traffic from inside to outside, i can not access from outside to inside systems? (in cisco router packets are exactly as mention above, but outside system identifies reply packets and therefore accepts them). please let me know if i am misunderstanding. thanks