From owner-freebsd-questions Mon Jun 25 11:29:23 2001 Delivered-To: freebsd-questions@freebsd.org Received: from cody.jharris.com (cody.jharris.com [205.238.128.83]) by hub.freebsd.org (Postfix) with ESMTP id B7D1637B407 for ; Mon, 25 Jun 2001 11:29:20 -0700 (PDT) (envelope-from nick@rogness.net) Received: from localhost (nick@localhost) by cody.jharris.com (8.11.1/8.9.3) with ESMTP id f5PJqkm44207; Mon, 25 Jun 2001 14:52:46 -0500 (CDT) (envelope-from nick@rogness.net) Date: Mon, 25 Jun 2001 14:52:46 -0500 (CDT) From: Nick Rogness X-Sender: nick@cody.jharris.com To: Tim Erlin Cc: questions@FreeBSD.ORG Subject: Re: ipfw -- fwd, divert, natd -redirect_port? In-Reply-To: <20010625165405.93596.qmail@web11703.mail.yahoo.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Mon, 25 Jun 2001, Tim Erlin wrote: > I currently have 4.3-STABLE running NAT on my DSL(static ip). I'd like > to put a webserver (or any other service) behind it and map the > incoming port appropriately. I see three choices with ipfw and I'm not > sure what the differences are. > Well, there's only 2 natd and divert are the same. Besides, you need to use nat for this. > How does fwd differ from divert differ from running natd with > -redirect_port? natd must be run in conjunction with divert (That is how the natd daemon receives packets from the kernel). Like so: ipfw divert natd ip from any to any via xl0 fwd is an ipfw firewall rule extention, like so: ipfw fwd 10.0.0.1 ip from any to any out via xl0 Nick Rogness - Keep on Routing in a Free World... "FreeBSD: The Power to Serve!" To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message