From owner-freebsd-questions Tue Jun 15 8:52:37 1999 Delivered-To: freebsd-questions@freebsd.org Received: from mel.alcatel.fr (mel.alcatel.fr [212.208.74.132]) by hub.freebsd.org (Postfix) with ESMTP id 8D0DE15318 for ; Tue, 15 Jun 1999 08:52:22 -0700 (PDT) (envelope-from Thierry.Herbelot@alcatel.fr) Received: from aifhs2.alcatel.fr (mailhub.alcatel.fr [155.132.180.80]) by mel.alcatel.fr (ALCANET/SMTP) with ESMTP id QAA04245; Tue, 15 Jun 1999 16:49:17 +0200 Received: from lune.telspace.alcatel.fr (lune.telspace.alcatel.fr [155.132.144.65]) by aifhs2.alcatel.fr (ALCANET/SMTP2) with ESMTP id RAA26867; Tue, 15 Jun 1999 17:46:42 +0200 (MET DST) Received: from telss1 (telss1.telspace.alcatel.fr [155.132.51.4]) by lune.telspace.alcatel.fr (8.9.1a/8.9.1) with ESMTP id RAA15776; Tue, 15 Jun 1999 17:34:03 +0200 (MEST) Received: from telspace.alcatel.fr by telss1 (8.8.8+Sun/SMI-SVR4) id RAA19235; Tue, 15 Jun 1999 17:39:13 +0200 (MET DST) Message-ID: <376674F7.B48E1539@telspace.alcatel.fr> Date: Tue, 15 Jun 1999 17:44:55 +0200 From: Thierry Herbelot Reply-To: thierry.herbelot@alcatel.fr Organization: Alcatel CIT Nanterre X-Mailer: Mozilla 4.6 [en] (X11; I; SunOS 5.5.1 sun4m) X-Accept-Language: en MIME-Version: 1.0 To: Erik de Zeeuw Cc: freebsd-questions@FreeBSD.ORG Subject: Re: NAT/Masquerading question References: <37666D8C.68DABBC@univ-lehavre.fr> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Bonjour, You may want to use the "redirect-port" feature of natd and multiple X-server addressing (setenv DISPLAY gateway:0, ...gateway:29) to enable connections back to your X Terminals In this case : redirect (ext. IP) / (port 6000) to Xterm nr 1 redirect (ext. IP) / (port 6001) to Xterm nr 2 redirect (ext. IP) / (port 6002) to Xterm nr 3 redirect (ext. IP) / (port 6003) to Xterm nr 4 This should work ok TfH Erik de Zeeuw wrote: > > Hi, > > I have to deal with 30 X Terminals, each one with its own public > C class ip adress. The problem is that my C class adress space is > getting shorter, and it would be a great thing to set up the > terminals so that they only have a private ( 192.168.* ) adress. > > To achieve this, I grabbed a p133/32Mb/2Gb with one 3Com NIC ( 3c900 > combo ) and a cheap NE2000 compatible, and installed a brand new > FreeBSD 3.2-RELEASE on it. > > As I already use ipfw on another machine, I decided to use IPFilter > to have a look at it. > > Everything seems to work OK, I used ipnat to do some NAT and hide > the terminals behind the public address of the FreeBSD gateway. > > Terminals -------------> FreeBSD Gateway -------------> Outside > ( 192.168.0.*) (192.168.0.1) (194.x.x.x ) > ne2000/ed1 3Com/xl0 > > I used the following ipnat rules : > > map xl0 192.168.0.0/24 -> 194.X.X.X/32 portmap tcp/udp 40000:65000 > map xl0 192.168.0.0/24 -> 194.X.X.X/32 > > The ping is ok from the terminals to the outside, and the telnet is > working fine. > > The problem is that the X connections does not work. I read some more > docs about NAT since, and it seems I have to use some kind of X > proxy to make it work. > > Question is, where can I find a kind of X proxy ? The servers on > which the terminals should connect are of several species ( Linux, > Solaris 2.7, and an Irix 6.4 ). > > Another question is if there exists some other way to make the X > connections work through the NAT gateway, may be using port > redirection or other little toys ? May be using more than one real > ip adress would help. > > If some of you did succeed in setting this kind of thing, I would be > pleased to hear from them. I didn't checked the other way : natd, but > I think it will give the same results, at least from the docs I've > read. > > Thanks in advance, > > Erik de Zeeuw, > Universite du Havre, > erik@univ-lehavre.fr > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message -- Thierry Herbelot (+33) 1 46 52 47 23 http://perso.cybercable.fr/herbelot To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message