From owner-freebsd-hackers Fri Jun 15 2:43:55 2001 Delivered-To: freebsd-hackers@freebsd.org Received: from malmo.trab.se (malmo.trab.se [131.115.48.10]) by hub.freebsd.org (Postfix) with ESMTP id EF07037B405 for ; Fri, 15 Jun 2001 02:43:48 -0700 (PDT) (envelope-from Urban.E.Olsson@telia.se) Received: from trab-hermes.haninge.trab.se (trab-hermes.haninge.trab.se [131.115.158.15]) by malmo.trab.se (8.10.1/TRAB-primary-2) with ESMTP id f5F9g3k23557 for ; Fri, 15 Jun 2001 11:42:03 +0200 (MEST) Received: by TRAB-HERMES with Internet Mail Service (5.5.2650.21) id ; Fri, 15 Jun 2001 11:43:42 +0200 Message-ID: <778DFE9B4E3BD111A74E08002BA3DC0D03DA52BC@TRAB-HERMES> From: Urban Olsson To: freebsd-hackers@freebsd.org Subject: modified natd again Date: Fri, 15 Jun 2001 11:43:41 +0200 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Content-Type: text/plain; charset="ISO-8859-1" Content-Transfer-Encoding: quoted-printable Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Hi again, I=B4m still working on my modified natd and have encountered a problem = again. What I have done so far is to exchange the alias module with my own = aliasing module. The problem this time is that when I send a packet (ping) from = the internal machine to the external network the aliasing performs fine but = when the answer comes back the packet disappears after the de-aliasing. I = run the natd in verbose mode and see that the aliasing works fine both ways but = the packet is only transmitted on its way out, not on the way in. My ipfw = conf looks exactly as in the man pages for natd. It looks like the packet is diverted on the inner NIC and not received but the ipfw rules says that = only the external interface should do divert. I first thought that it is some problem with checksums but as far as I = can see the checksums are reset properly. I have seen that the original = aliasing module messes with some kind of ICMP ID. could this have something to = do with this? Another strange thing is that when I try to use tcpdump it doesn=B4t = show all packets. No packets are "dropped by kernel" but tcpdump have received packets but don=B4t show them. Could this in some way be related. I would appreciate some answers from people with greater wisdom than my = own ;-) regards Urban Olsson To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message