From owner-freebsd-questions  Mon Aug 20  4:48:32 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from mail.oak-wood.co.uk (pc1-dale2-0-cust111.not.cable.ntl.com [62.254.2.111])
	by hub.freebsd.org (Postfix) with SMTP id 8777B37B401
	for <freebsd-questions@freebsd.org>; Mon, 20 Aug 2001 04:48:26 -0700 (PDT)
	(envelope-from lists@oak-wood.co.uk)
Received: from chris.oak-wood.co.uk ([192.168.37.3]) by mail.oak-wood.co.uk
          with SMTP (Mailtraq/1.1.6.1176) id ML9642AF68D
          for freebsd-questions@freebsd.org; Mon, 20 Aug 2001 12:48:11 +0100
Message-ID: <Zr+V+$FUjPg7EwEX@chris.oak-wood.co.uk>
Date: Mon, 20 Aug 2001 12:47:32 +0100
To: freebsd-questions@freebsd.org
From: Chris Hastie <lists@oak-wood.co.uk>
Subject: Port redirection with natd
MIME-Version: 1.0
Content-Type: text/plain;charset=us-ascii;format=flowed
User-Agent: Turnpike/6.00-Beta-6-U (<Il3E71nTPjK+0BwW71wLhXKfS+>)
X-Hops: 1
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

I'm trying to set up an internet gateway with NAT and some port 
redirection using Free BSD 4.3-CURRENT. The machine has two nics, xl0 
faces the internet and sis0 faces my LAN.

So far the NAT works fine, but I can't get the port redirection going at 
all.

The kernel was compiled with:

|options         IPFIREWALL              # install ipfw firewall
|options         IPFIREWALL_VERBOSE_LIMIT=5 # log firewall packets, limit entries
|options         IPDIVERT                # Allow NAT

I have this in /etc/rc.conf

|# -- Configure NAT and Firewall --#
|firewall_enable="YES"
|firewall_type="open"   #Close later when I get it working!
|natd_enable="YES"
|natd_interface="xl0"
|natd_flags="-f /etc/natd.conf"


and the natd.conf referenced looks like this

|dynamic yes
|redirect_port tcp celandine:25 25
|redirect_port tcp celandine:119 119
|redirect_port tcp celandine:3306 3306

The ports do not seem to being redirected though, and I can see no 
errors at boot up. netstat does not show any of the ports in question in 
use, but an attempt to run

# natd -n xl0 -f /etc/natd.conf

returns

|natd: Unable to bind socket.: Address already in use.

Additionally, I can get no response from any of those ports by 
telnetting to them with another machine.

Any ideas?
-- 
Chris Hastie

http://www.oak-wood.co.uk/

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message