Date: Tue, 19 May 2009 13:46:05 -0400 From: alexus <alexus@gmail.com> To: "freebsd-questions@freebsd.org" <freebsd-questions@freebsd.org> Subject: Re: ipnat 911 Message-ID: <6ae50c2d0905191046l3691ee3ke6fc0472ba90a9f9@mail.gmail.com> In-Reply-To: <6ae50c2d0905191036h37262faahfa4c75589a4f8616@mail.gmail.com> References: <6ae50c2d0905191036h37262faahfa4c75589a4f8616@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, May 19, 2009 at 1:36 PM, alexus <alexus@gmail.com> wrote: > I'm running system with 2 jails > > host runs named > 1st jail runs mail > 2nd jail runs web > > jails needs to be able to reach out to outside world, for example mail > server needs to be able to communicate with remote server > > for that i decided to use ipnat, here is rule i used > > map bce0 mx -> mx > > same goes for web > > but after activating these rules my host itself is not able to reach > out to anything remote.. > > -- > http://alexus.org/ > the other thing is on host, and thats after few mintues i reload ipnat dd# ipnat -s mapped in 5022790 out 4034969 added 438863 expired 424203 no memory 0 bad nat 435 inuse 1256 orphans 0 rules 13 wilds 0 hash efficiency 66.56% bucket usage 40.84% minimal length 0 maximal length 7 average length 1.502 TCP Entries per state 0 1 2 3 4 5 6 7 8 9 10 11 0 0 0 0 5 1 1 0 1 0 50 15 dd# -- http://alexus.org/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?6ae50c2d0905191046l3691ee3ke6fc0472ba90a9f9>