Date: Thu, 27 May 1999 21:28:30 +0300 From: Ruslan Ermilov <ru@ucb.crimea.ua> To: Wayne Cuddy <wayne@crb-web.com> Cc: FreeBSD Questions <questions@freebsd.org> Subject: Re: nat and ip_alias Message-ID: <19990527212830.A64318@relay.ucb.crimea.ua> In-Reply-To: <Pine.LNX.3.95.990527123518.780C-100000@crb.crb-web.com>; from Wayne Cuddy on Thu, May 27, 1999 at 12:41:48PM -0400 References: <19990527185651.A30909@relay.ucb.crimea.ua> <Pine.LNX.3.95.990527123518.780C-100000@crb.crb-web.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, May 27, 1999 at 12:41:48PM -0400, Wayne Cuddy wrote: > I have an ADSL modem connected to a 10BaseT hub and several boxes also connect > to the hub one of which is a freebsd box with NATD installed. I am not doing > this for security reasons but simply for easy in use. I have a caching DNS > setup on the Freebsd box and want to point all other boxes to that as this > default route and DNS. > > So I need to bind 192.168.30.1 and 207.196.47.2 to the same card. Obviously > 207.196.47.2 will receive inbound/outbound packets to the internet. > > Thanks for your help, > Wayne > Run natd with ``-u -a 207.196.47.2''. This will instruct natd to: 1) use 207.196.47.2 as a translation address 2) only alter _outgoing_ packets with RFC1918 source addresses Configure your firewall so, that it will allow ip from 192.168.30.1 to 192.168.30.0/24 divert natd ip from any to any via <natd_interface> in the specified order. Without the `-u' flag of natd or without the first firewall rule, the communication between this host (running natd) and other hosts on the 192.168.30/24 network will be broken. I'd like to hear your feedback, please. Cheers, -- Ruslan Ermilov Sysadmin and DBA of the ru@ucb.crimea.ua United Commercial Bank +380.652.247.647 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19990527212830.A64318>