From owner-freebsd-hackers Sat Apr 13 19:10:16 2002 Delivered-To: freebsd-hackers@freebsd.org Received: from artemis.drwilco.net (diana.drwilco.net [66.48.127.79]) by hub.freebsd.org (Postfix) with ESMTP id 586E737B400 for ; Sat, 13 Apr 2002 19:10:12 -0700 (PDT) Received: from ceres.drwilco.net (docwilco.xs4all.nl [213.84.68.230]) by artemis.drwilco.net (8.11.6/8.11.6) with ESMTP id g3E29Ux74619 (using TLSv1/SSLv3 with cipher DES-CBC3-SHA (168 bits) verified NO); Sat, 13 Apr 2002 22:09:35 -0400 (EDT) (envelope-from drwilco@drwilco.net) Message-Id: <5.1.0.14.0.20020414041134.02cf8140@mail.drwilco.net> X-Sender: lists@mail.drwilco.net X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Sun, 14 Apr 2002 04:22:01 +0200 To: Matt Simerson From: "Rogier R. Mulhuijzen" Subject: Re: Is natd the right tool? Cc: freebsd-hackers@FreeBSD.ORG In-Reply-To: <916461CE-4E33-11D6-8AF4-00306553B5E4@blockads.com> References: <20020411230121.E39738@blossom.cjclark.org> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Two tips 1) did you set up the divert to natd in your ipfw rules? 2) if you do the dig on the machine where natd is running and the external IP is routed over lo0 locally, ipfw will not see the packets as incoming on the interface where the IP is bound. So that means they will not match the ipfw rules that divert the packets to natd. I suggest trying the dig from a different host. Doc To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message