Date: Tue, 8 Jul 2003 17:57:10 +0200 From: =?iso-8859-1?Q?Sten_Daniel_S=F8rsdal?= <sten.daniel.sorsdal@wan.no> To: "Guilherme Oliveira" <guilherme@nortenet.pt>, "FreeBSD-NET" <FreeBSD-NET@FreeBSD.ORG> Subject: RE: Acess to virtual hosts are being blocked by natd/firewall Message-ID: <0AF1BBDF1218F14E9B4CCE414744E70F07DEE6@exchange.wanglobal.net>
next in thread | raw e-mail | index | archive | help
> Sten Daniel S=F8rsdal wrote:
> > Make sure that you are diverting the traffic from LAN to=20
> DMZ via NATD.
>=20
> I didn'tunderstand very well:
> ipfw is not doing this thrue the "OPEN" configuration by default ?
>=20
No.
in rc.firewall (line 124):
${fwcmd} add 50 divert natd all from any to any via ${natd_interface}
This line only NAT's traffic going in and out of your upstream =
interface.
in "OPEN" configuration it NATs the traffic from LAN and DMZ -to/from- =
internet.
Not between the LAN and DMZ area, which is what you need.
You could look into setting up your own little proxy DNS (such as =
pdnsd).
Add the servers to hosts file on your workstations, or make it NAT the =
way you want.
- Sten
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?0AF1BBDF1218F14E9B4CCE414744E70F07DEE6>