From owner-freebsd-ipfw@FreeBSD.ORG  Tue Jan  9 09:27:07 2007
Return-Path: <owner-freebsd-ipfw@FreeBSD.ORG>
X-Original-To: freebsd-ipfw@freebsd.org
Delivered-To: freebsd-ipfw@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id DC7BC16A407
	for <freebsd-ipfw@freebsd.org>; Tue,  9 Jan 2007 09:27:07 +0000 (UTC)
	(envelope-from budiyt@gmail.com)
Received: from nf-out-0910.google.com (nf-out-0910.google.com [64.233.182.185])
	by mx1.freebsd.org (Postfix) with ESMTP id 6417113C441
	for <freebsd-ipfw@freebsd.org>; Tue,  9 Jan 2007 09:27:07 +0000 (UTC)
	(envelope-from budiyt@gmail.com)
Received: by nf-out-0910.google.com with SMTP id k27so66165nfc
	for <freebsd-ipfw@freebsd.org>; Tue, 09 Jan 2007 01:27:06 -0800 (PST)
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta;
	h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition;
	b=X3xgXTI1qTLFvT7s1RBFRz3DpCGp6XFOGsXKr2e+JxvKub/8QrKGiWgtfTGtcoM66tID1bTypunRBImiqE+yyZ9HF9SOcjpZHV3d8Pd3xAjdn9IMfx23mwqdcWEgvv4au+3X7QMkqE/t4hTDDNBpyMwudr0ZMelhN0yd0fZmq7Q=
Received: by 10.49.90.18 with SMTP id s18mr119996nfl.1168333334961;
	Tue, 09 Jan 2007 01:02:14 -0800 (PST)
Received: by 10.49.28.4 with HTTP; Tue, 9 Jan 2007 01:02:14 -0800 (PST)
Message-ID: <4d4dc3640701090102y7e3bb929h2d306ec6776b4498@mail.gmail.com>
Date: Tue, 9 Jan 2007 16:02:14 +0700
From: budsz <budiyt@gmail.com>
To: freebsd-ipfw@freebsd.org
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
Subject: Need help to convert rule iptables to ipfw
X-BeenThere: freebsd-ipfw@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: IPFW Technical Discussions <freebsd-ipfw.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ipfw>
List-Post: <mailto:freebsd-ipfw@freebsd.org>
List-Help: <mailto:freebsd-ipfw-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 09 Jan 2007 09:27:07 -0000

Dear,

I've some problem with nat and rdr onto the same network like sample:

iptables -t nat -I PREROUTING -i eth1 -p tcp -d 202.xxx.yyy.123 --dport
6112 -j DNAT --to-destination 192.168.0.1:6112

iptables -t nat -I PREROUTING -i eth0 -p tcp -s 192.168.0.0/24 -d
202.xxx.yyy.123 --dport 6112 -j DNAT --to-destination 192.168.0.1:6112

iptables -t nat -I POSTROUTING -o eth0 -s 192.168.0.0/24 -d
192.168.0.0/24 -j SNAT --to-source 202.xxx.yyy.123

That rules using iptables on Linux mechine. Now,  I've already run
ipfw2 with FreeBSD box. My questions is how to implement rule like
that if use ipfw2. Does ipfw support feature PREROUTING/POSTROUTING
like iptables on Linux system?.

Thanks you.


-- 
budsz