From owner-freebsd-ipfw@FreeBSD.ORG Sun Sep 19 06:40:53 2004 Return-Path: Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 262F616A4DB for ; Sun, 19 Sep 2004 06:40:53 +0000 (GMT) Received: from debug.ro (debug.ro [81.196.162.90]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6E1DB43D39 for ; Sun, 19 Sep 2004 06:40:50 +0000 (GMT) (envelope-from cristi@debug.ro) Received: from debug.ro (localhost.ro [127.0.0.1]) by debug.ro (8.13.1/8.13.1) with ESMTP id i8J6enTG094822 for ; Sun, 19 Sep 2004 09:40:49 +0300 (EEST) (envelope-from cristi@debug.ro) Received: from localhost (cristi@localhost) by debug.ro (8.13.1/8.12.9/Submit) with ESMTP id i8J6eiZX094819 for ; Sun, 19 Sep 2004 09:40:44 +0300 (EEST) (envelope-from cristi@debug.ro) Date: Sun, 19 Sep 2004 09:40:44 +0300 (EEST) From: Cristian Ursuleanu To: freebsd-ipfw@freebsd.org Message-ID: <20040919093421.F94568@debug.ro> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Subject: ipfw & natd X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 19 Sep 2004 06:40:53 -0000 Hi, I have a problem with ipfw: (10.0.0.x) (ed0)(10.0.0.1)(rl0) (1.2.3.4) --LAN----------------FreeBSD--------------ISP_1 | |(rl1) | | (5.6.7.8) |_________________ISP_2 thw default route is 1.2.3.4 ( $ route add -net 0.0.0.0 1.2.3.4 ) I want to forward only port 80 from LAN to ISP_2 . I do: $ natd -p 8668 -interface rl0 $ natd -p 8669 -interface rl1 $ ipfw add 500 fwd 5.6.7.8 tcp from 10.0.0.0/24 to any 80 $ ipfw add 1000 divert 8668 all from any to any rl0 $ ipfw add 2000 divert 8669 all from any to any rl1 and it's seems not to work . 'tcpdump' on rl1 show connections from 10.0.0.2.3122 > WEB_SERVER.80 , and it must be: 5.6.7.8 > WEB_SERVER.80 is missing the natd . what is wrong? thanks.