From owner-freebsd-stable Thu Jun 29 12:19:35 2000 Delivered-To: freebsd-stable@freebsd.org Received: from mail.gmx.net (pop.gmx.net [194.221.183.20]) by hub.freebsd.org (Postfix) with SMTP id 8EEEA37B9EF for ; Thu, 29 Jun 2000 12:19:29 -0700 (PDT) (envelope-from Gerhard.Sittig@gmx.net) Received: (qmail 32140 invoked by uid 0); 29 Jun 2000 19:19:26 -0000 Received: from p3e9c350e.dip.t-dialin.net (HELO speedy.gsinet) (62.156.53.14) by mail.gmx.net with SMTP; 29 Jun 2000 19:19:26 -0000 Received: (from sittig@localhost) by speedy.gsinet (8.8.8/8.8.8) id TAA01938 for freebsd-stable@FreeBSD.ORG; Thu, 29 Jun 2000 19:42:39 +0200 Date: Thu, 29 Jun 2000 19:42:39 +0200 From: Gerhard Sittig To: freebsd-stable@FreeBSD.ORG Subject: Re: Help : about ipnat rdr problem Message-ID: <20000629194239.X9883@speedy.gsinet> Mail-Followup-To: freebsd-stable@FreeBSD.ORG References: <001401bfe171$bd65e970$a60211ac@hef> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0i In-Reply-To: <001401bfe171$bd65e970$a60211ac@hef>; from mlist@mail2.cosco.com.cn on Thu, Jun 29, 2000 at 10:28:26AM +0800 Organization: System Defenestrators Inc. Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Thu, Jun 29, 2000 at 10:28 +0800, He Feng(BJ) wrote: > > # cat /etc/ipnat.conf > > map ep0 172.17.2.0/24 -> 202.99.99.99/32 portmap tcp/udp 10000:65000 > rdr ep0 202.99.99.99/32 port 110 -> 172.17.2.229 port 110 tcp/udp ipnat rules are sensitive to the order they're specified in, IIRC. rdr usually has to be above map, and more concrete map (single hosts) has to be before general map (network) rules. And the above lines miss an icmp (i.e. w/o tcp/udp) map rule. > #ipnat -C > #ipnat -f /etc/ipnat.conf Don't know if this will hurt, but I stick with the "ipnat -CF -f $CFGFILE" I've seen in OpenBSD installations. virtually yours 82D1 9B9C 01DC 4FB4 D7B4 61BE 3F49 4F77 72DE DA76 Gerhard Sittig true | mail -s "get gpg key" Gerhard.Sittig@gmx.net -- If you don't understand or are scared by any of the above ask your parents or an adult to help you. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message