From owner-freebsd-questions  Mon Nov 25 14:43:22 2002
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 05CAC37B401
	for <freebsd-questions@FreeBSD.ORG>; Mon, 25 Nov 2002 14:43:21 -0800 (PST)
Received: from alpha.wintersperu.com.pe (alpha.wintersperu.com.pe [200.37.53.28])
	by mx1.FreeBSD.org (Postfix) with ESMTP id A829E43EC2
	for <freebsd-questions@FreeBSD.ORG>; Mon, 25 Nov 2002 14:43:15 -0800 (PST)
	(envelope-from aran80@wintersperu.com.pe)
Received: from electron ([130.102.1.2])
	by alpha.wintersperu.com.pe (8.11.6/8.11.6) with ESMTP id gAPMgr579316
	for <freebsd-questions@FreeBSD.ORG>; Mon, 25 Nov 2002 17:42:55 -0500 (PET)
	(envelope-from aran80@wintersperu.com.pe)
From: "Alvaro Rosales R." <aran80@wintersperu.com.pe>
Organization: Procacao S.A
To: freebsd-questions@FreeBSD.ORG
Date: Mon, 25 Nov 2002 17:42:53 -0500
MIME-Version: 1.0
Subject: NAT + IPFW question
Message-ID: <3DE2611D.10213.17F371@localhost>
X-mailer: Pegasus Mail for Windows (v4.01)
Content-type: text/plain; charset=US-ASCII
Content-transfer-encoding: 7BIT
Content-description: Mail message body
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

Hi fellows I have setup natd in my freeBSD BOX (using firewall =OPEN) 
and it is working fine.
Now I want to close my firewall so that the only computer that is using 
NATD would the the only one that could accept connections from the 
internet.But when I try to telnet to the natd box I cant connect to it.What 
Am I doing wrong?
Those are   my  ipfw rules
10.10.1.91 (natd box)
10.10.1.2 (my box)

00050   5816  2829686 divert 8668 ip from any to any via rl1
00100   2412   168334 allow ip from any to any via lo0
00200      0        0 deny ip from any to 127.0.0.0/8
00300      0        0 deny ip from 127.0.0.0/8 to any
00800   5609  6342173 allow ip from 10.10.1.91 to 130.102.1.2
00801   3580   143970 allow ip from 10.10.1.2 to 130.102.1.91
01000 430772 59326512 deny ip from any to any
65000      0        0 allow ip from any to 10.10.1.2
65535  17161  5967606 allow ip from any to any

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message