Skip site navigation (1)Skip section navigation (2)
Date:      Sun, 19 Sep 2004 09:40:44 +0300 (EEST)
From:      Cristian Ursuleanu <cristi@debug.ro>
To:        freebsd-ipfw@freebsd.org
Subject:   ipfw & natd
Message-ID:  <20040919093421.F94568@debug.ro>

next in thread | raw e-mail | index | archive | help


Hi,

I have a problem with ipfw:


(10.0.0.x)     (ed0)(10.0.0.1)(rl0)     (1.2.3.4)
--LAN----------------FreeBSD--------------ISP_1
                        |
                        |(rl1)
                        |
                        |               (5.6.7.8)
                        |_________________ISP_2



thw default route is 1.2.3.4
( $ route add -net 0.0.0.0 1.2.3.4 )

I want to forward only port 80 from LAN to ISP_2 .

I do:
$ natd -p 8668 -interface rl0
$ natd -p 8669 -interface rl1

$ ipfw add 500 fwd 5.6.7.8 tcp from 10.0.0.0/24 to any 80
$ ipfw add 1000 divert 8668 all from any to any rl0
$ ipfw add 2000 divert 8669 all from any to any rl1

and it's seems not to work .
'tcpdump' on rl1 show connections from 10.0.0.2.3122 > WEB_SERVER.80 , and
it must be: 5.6.7.8 > WEB_SERVER.80

is missing the natd .

what is wrong?

thanks.



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040919093421.F94568>