From owner-freebsd-questions  Mon Aug 13  9: 3:20 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from cody.jharris.com (cody.jharris.com [205.238.128.83])
	by hub.freebsd.org (Postfix) with ESMTP id 9746537B409
	for <freebsd-questions@FreeBSD.ORG>; Mon, 13 Aug 2001 09:03:15 -0700 (PDT)
	(envelope-from nick@rogness.net)
Received: from localhost (nick@localhost)
	by cody.jharris.com (8.11.1/8.9.3) with ESMTP id f7DG3CM27266;
	Mon, 13 Aug 2001 11:03:12 -0500 (CDT)
	(envelope-from nick@rogness.net)
Date: Mon, 13 Aug 2001 11:03:12 -0500 (CDT)
From: Nick Rogness <nick@rogness.net>
X-Sender: nick@cody.jharris.com
To: Rodney Dickerson <rdickers@columbus.rr.com>
Cc: freebsd-questions@FreeBSD.ORG
Subject: Re: ipfw and natd question
In-Reply-To: <005601c1240a$df948510$0200000a@chrome>
Message-ID: <Pine.BSF.4.21.0108131058560.26968-100000@cody.jharris.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

On Mon, 13 Aug 2001, Rodney Dickerson wrote:

> Well I got ipfw to work, finally, and everything seems to be ok.  I am
> running v4.3 on a P-133 with 128MB RAM, and I was surprised to see
> that it runs at less than 1% utilization.  Pretty Cool!
> 
> Anyway, I am using roadrunner, and I have 2 machines on the private
> network. Now I want to run an ftp server on one machine, and I am not
> sure how to configure the ipfw rules for that.  I followed the ipfw
> how-to, sort of, and had to modify it slightly to work with a cable
> modem instead of a modem (ppp).
> 
> My question is this:  Do I use natd to redirect incoming connections
> on port 21 to my internal server (10.0.0.10), or do I use an ipfw
> command?  I think that it will be ipfw, but I am not sure on which
> command to use (divert, fwd, tee, or what) and the syntax.  Keep in
> mind that I have a dynamic public ip (on interface rl0), so I need the
> rule to be dynamic.  Any help would be appreciated.  Thanks!
> 

	Do not touch ipfw.  This is a natd thing since you must
	change the destination ip.  Look at the natd man page,
	specifically the "redirect_port" option section.  Something
	like:

		-redirect_port tcp 10.0.0.10:21 21

	option to natd should do the trick.


Nick Rogness <nick@rogness.net>
 - Keep on Routing in a Free World...
  "FreeBSD: The Power to Serve!"


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message