Date: Tue, 22 Dec 1998 07:25:26 -0600 From: Nelson <rjn103s@mgr3.k12.mo.us> To: ipfilter@coombs.anu.edu.au Cc: questions@FreeBSD.ORG, security@FreeBSD.ORG Subject: Revised: Need Help With Rules Message-ID: <3.0.6.32.19981222072526.00f3ad50@mgr3.k12.mo.us>
next in thread | raw e-mail | index | archive | help
Greetings,
I am new to ipfilter and I have installed the ipfilter and all is well with
ipnat but I am having a bit of trouble with some redirection for some boxes
I would like to place behind the firewall. The boxes work great (behind
the firewall) when you are trying to access them from the internet side of
the firewall but not at all from the private side. ie. boxes from the
intranet can not call to the address a.b.c.xx2 and get anything. So from
the world side all is well but on site behind the firewall things are not.
Internet firewall address a.b.c.xxx/255.255.255.0
--------+----- mail address aliased a.b.c.xx1/255.255.255.255
| www address aliased a.b.c.xx2/255.255.255.255
|
[ed1] Outside Interface (oif) a.b.c.xxx,a.b.c.xx1,a.b.c.xx2
(Firewall FreeBSD-2.2.8)
[xl0] Inside Interface (iif) 172.16.255.254 default gateway
|
|
--------+-----
Intranet 172.16.0.0/255.255.0.0
This is what I have for the redirection that works from Internet side of
firewall.
# mail address aliased a.b.c.xx1/255.255.255.255 from outside world
rdr ed1 a.b.c.xx1/32 port smtp -> 172.16.0.3 port smtp
rdr ed1 a.b.c.xx1/32 port pop3 -> 172.16.0.3 port pop3
# redirect http
rdr ed1 a.b.c.xx2/32 port http -> 172.16.0.3 port http
# redirect ftp
rdr ed1 a.b.c.xx2/32 port ftp -> 172.16.0.3 port ftp
I have tried things like
rdr xl0 a.b.c.xx1/32 port (service) -> 172.16.0.3 port (service)
rdr xl0 a.b.c.xx2/32 port (service) -> 172.16.0.3 port (service)
with no luck:( I am not even sure if I need the stuff for xl0 but I am
unsure at this point.
I have put all these rules before the mappings and still no luck.
Thoughts Welcome & Appreciated!
Thanks!
Richard Nelson
Technology Director
Research & Development Director
System Administrator
Mountain Grove R-III Schools
420 N. Main
Mountain Grove, MO 65711
++++++++++++++++++++++++++++++++++++++++
+ FreeBSD, Linux, & Java = Excellence +
+ http://www.freebsd.org +
+ http://www.redhat.com +
+ http://java.sun.com/ +
+ Samba + (FreeBSD||Linux)= Free PDC! +
+ Using FreeBSD for Servers! +
+ Using Linux for Workstaions! +
++++++++++++++++++++++++++++++++++++++++
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3.0.6.32.19981222072526.00f3ad50>