From owner-freebsd-net Tue Dec 3 4:43:11 2002 Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C487E37B401 for ; Tue, 3 Dec 2002 04:43:09 -0800 (PST) Received: from mailtoaster1.pipeline.ch (mailtoaster1.pipeline.ch [62.48.0.70]) by mx1.FreeBSD.org (Postfix) with SMTP id 7625143EC2 for ; Tue, 3 Dec 2002 04:43:08 -0800 (PST) (envelope-from oppermann@pipeline.ch) Received: (qmail 27606 invoked from network); 3 Dec 2002 12:42:42 -0000 Received: from unknown (HELO pipeline.ch) ([62.48.0.53]) (envelope-sender ) by mailtoaster1.pipeline.ch (qmail-ldap-1.03) with SMTP for ; 3 Dec 2002 12:42:42 -0000 Message-ID: <3DECA67E.81857BA2@pipeline.ch> Date: Tue, 03 Dec 2002 13:41:34 +0100 From: Andre Oppermann X-Mailer: Mozilla 4.76 [en] (Windows NT 5.0; U) X-Accept-Language: en MIME-Version: 1.0 To: Nicolai Petri Cc: freebsd-net@freebsd.org Subject: Re: DNAT on freebsd References: <20021129095422.GA15876@migla.ktu.lt> <3DE761D1.F5F96F8C@pipeline.ch> <200212030857.49306.nicolai@catpipe.net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Nicolai Petri wrote: > > Hi, All. > > Please note that natd supports the proxy_rule command which enables some of Yes, but natd's current config syntax is very cumbersome and not very logical. The rewritten natd has a much cleaner and more understandable syntax more like ipfilters or pfs nat functionality. -- Andre > this functionality. The only issues is the missing UDP support (which I have > patches for locally) and the lack of rewriting urls embedded in packets. > > Best regards, > Nicolai Petri > > On Friday 29 November 2002 13:47, Andre Oppermann wrote: > > Nerijus Bendziunas wrote: > > > Hi, > > > i need to do something like DNAT in iptables on freebsd. > > > I mean to rewrite packets which match some rule dst ip/port. > > > ie: all smtp traffic (any 25) redirect to some ip 25. or if user tries > > > to connect to www.yahoo.com:80 i rewrite dst and he realy connects to > > > www.google.lt:80 or smth. > > > > We have written one which can do that: > > > > http://diehard.n-r-g.com/stuff/freebsd/ > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message