From owner-freebsd-net@FreeBSD.ORG Mon Oct 4 16:53:59 2004 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 035AD16A4CE for ; Mon, 4 Oct 2004 16:53:59 +0000 (GMT) Received: from mail.trueafrican.com (mail.trueafrican.com [212.88.98.117]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9D50C43D45 for ; Mon, 4 Oct 2004 16:53:57 +0000 (GMT) (envelope-from begj@trueafrican.com) Received: from mail.trueafrican.com ([127.0.0.1]) by localhost (mail.trueafrican.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 45078-08 for ; Mon, 4 Oct 2004 19:53:52 +0300 (EAT) Received: by mail.trueafrican.com (Postfix, from userid 1001) id C7AD925F0B6; Mon, 4 Oct 2004 19:53:52 +0300 (EAT) Date: Mon, 4 Oct 2004 19:53:52 +0300 (EAT) From: Joseph Begumisa To: freebsd-net@freebsd.org Message-ID: <20041004195245.X55461@mail.trueafrican.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed X-Virus-Scanned: by amavisd-new at trueafrican.com Subject: Issues with 2 instances of NATD X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 04 Oct 2004 16:53:59 -0000 I want traffic from one machine on the LAN with ip address 169.254.0.18 to go out through ISP2 and traffic from the rest of the machines on the LAN o go through ISP1. However, traffic from all machines including that one goes through ISP1. Perhaps I'm missing something in my configuration. Below is my setup and configuration details: ISP1 ISP2 | | | | 212.XX.XX.117 vr0 | |vr1 193.1XX.XXX.162 ------------------ | BSD GATEWAY | ------------------ | fxp0 169.254.0.1 | -------- -------- | | | | | LAN 169.254.0.0/24 *default route on BSD Gateway is thru ISP1. NATD Processes Running: ---------------------- /sbin/natd -f /etc/natd.cf -n vr0 /sbin/natd -f /etc/natd2.cf -n vr1 natd.cf: ------- log yes deny_incoming no use_sockets yes same_ports yes verbose no port 8668 unregistered_only no natd2.cf: -------- log yes deny_incoming no use_sockets yes same_ports yes verbose no port 8669 unregistered_only no natd configuration in firewall: ------------------------------ /sbin/ipfw add 43 divert 8669 all from 169.254.0.18 to any via vr1 /sbin/ipfw add 46 divert 8668 all from any to any via vr0 Joseph.