Date: Fri, 15 Jun 2001 11:43:41 +0200 From: Urban Olsson <Urban.E.Olsson@telia.se> To: freebsd-hackers@freebsd.org Subject: modified natd again Message-ID: <778DFE9B4E3BD111A74E08002BA3DC0D03DA52BC@TRAB-HERMES>
next in thread | raw e-mail | index | archive | help
Hi again, I=B4m still working on my modified natd and have encountered a problem = again. What I have done so far is to exchange the alias module with my own = aliasing module. The problem this time is that when I send a packet (ping) from = the internal machine to the external network the aliasing performs fine but = when the answer comes back the packet disappears after the de-aliasing. I = run the natd in verbose mode and see that the aliasing works fine both ways but = the packet is only transmitted on its way out, not on the way in. My ipfw = conf looks exactly as in the man pages for natd. It looks like the packet is diverted on the inner NIC and not received but the ipfw rules says that = only the external interface should do divert. I first thought that it is some problem with checksums but as far as I = can see the checksums are reset properly. I have seen that the original = aliasing module messes with some kind of ICMP ID. could this have something to = do with this? Another strange thing is that when I try to use tcpdump it doesn=B4t = show all packets. No packets are "dropped by kernel" but tcpdump have received packets but don=B4t show them. Could this in some way be related. I would appreciate some answers from people with greater wisdom than my = own ;-) regards Urban Olsson To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?778DFE9B4E3BD111A74E08002BA3DC0D03DA52BC>