Date: Fri, 15 Jun 2001 11:43:41 +0200 From: Urban Olsson <Urban.E.Olsson@telia.se> To: freebsd-hackers@freebsd.org Subject: modified natd again Message-ID: <778DFE9B4E3BD111A74E08002BA3DC0D03DA52BC@TRAB-HERMES>
next in thread | raw e-mail | index | archive | help
Hi again, Iīm still working on my modified natd and have encountered a problem again. What I have done so far is to exchange the alias module with my own aliasing module. The problem this time is that when I send a packet (ping) from the internal machine to the external network the aliasing performs fine but when the answer comes back the packet disappears after the de-aliasing. I run the natd in verbose mode and see that the aliasing works fine both ways but the packet is only transmitted on its way out, not on the way in. My ipfw conf looks exactly as in the man pages for natd. It looks like the packet is diverted on the inner NIC and not received but the ipfw rules says that only the external interface should do divert. I first thought that it is some problem with checksums but as far as I can see the checksums are reset properly. I have seen that the original aliasing module messes with some kind of ICMP ID. could this have something to do with this? Another strange thing is that when I try to use tcpdump it doesnīt show all packets. No packets are "dropped by kernel" but tcpdump have received packets but donīt show them. Could this in some way be related. I would appreciate some answers from people with greater wisdom than my own ;-) regards Urban Olsson To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?778DFE9B4E3BD111A74E08002BA3DC0D03DA52BC>