From owner-freebsd-questions Tue Nov 21 14:30:47 2000 Delivered-To: freebsd-questions@freebsd.org Received: from dnai.com (dnai.com [207.181.194.98]) by hub.freebsd.org (Postfix) with ESMTP id 4341A37B4C5 for ; Tue, 21 Nov 2000 14:30:39 -0800 (PST) Received: from neptune.dnai.com (neptune.dnai.com [207.181.194.93]) by dnai.com (8.9.3/8.9.3) with ESMTP id OAA81582; Tue, 21 Nov 2000 14:30:39 -0800 (PST) Received: from cougar.chiplogic.com (cougar.chiplogic.com [216.15.52.34]) by neptune.dnai.com (8.9.3/8.9.3) with ESMTP id OAA06991; Tue, 21 Nov 2000 14:30:38 -0800 (PST) Received: from ws4.chiplogic.com (quokka [216.15.52.58]) by cougar.chiplogic.com (8.9.1b+Sun/8.9.1) with ESMTP id OAA01716; Tue, 21 Nov 2000 14:30:34 -0800 (PST) Received: from chiplogic.com (localhost [127.0.0.1]) by ws4.chiplogic.com (8.9.3+Sun/8.9.1) with ESMTP id OAA06694; Tue, 21 Nov 2000 14:30:37 -0800 (PST) Message-ID: <3A1AF78D.930B0F65@chiplogic.com> Date: Tue, 21 Nov 2000 14:30:37 -0800 From: Justin Wojdacki X-Mailer: Mozilla 4.75 [en] (X11; U; SunOS 5.7 sun4u) X-Accept-Language: en MIME-Version: 1.0 To: "Zaitsau, Andrei" Cc: "'freebsd-questions@freebsd.org'" Subject: Re: NAT question References: <054F7DAA9E54D311AD090008C74CE9BD01F1E6D3@exchange.panasonicfa.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG "Zaitsau, Andrei" wrote: > > I am using NAT on a gateway connected to the internet. 2 Computers are > connected to the gateway(192.168.0.1) with addresses 192.168.0.2 and > 192.168.0.3, is it possible manually block NAT(disconnect from internet) > for computer with 192.168.0.3 , while second host 192.168.0.2 will be still > alive(connected to the internet)? > Is it possible to limit bandwidth for users connected to gateway? > Thanks > Re: Question #1 try a NAT rule like this (if you're using ipf/ipnat): map ppp0 192.168.0.3/32 -> 192.168.0.1/32 portmap tcp/udp 10000:20000 with no rule that similarly handles 192.168.0.2. This should tell ipnat to map on to ppp0 at 192.168.0.1 any TCP or UDP connection from 192.168.0.3 that's on ports 10000 through 20000. Well, I think. I'd have to play with it some to be sure. -- --------------------- Justin Wojdacki justin@chiplogic.com Chiplogic Inc. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message