Date: Wed, 5 Nov 1997 18:08:56 +0700 (JAVT) From: V Gatut Harijoso <gatut@student.unpar.ac.id> To: Ruslan Shevchenko <rssh@cam.grad.kiev.ua> Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Help with Natd, pls. Message-ID: <Pine.BSF.3.95q.971105174926.8949A-100000@student.unpar.ac.id> In-Reply-To: <Pine.BSF.3.96.971105124214.491A-100000@cam.grad.kiev.ua>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 5 Nov 1997, Ruslan Shevchenko wrote:
> According to documentation I included all options in kernel,
>
> in /etc/rc.firewall:
> /sbin/ipfw -f flash
> /sbin/ipfw add 1000 pass all from 127.0.0.1 to 127.0.0.1
> /sbin/ipfw add divert 6668 all from any to any via ep0
> /sbin/ipfw add 6500 pass all from any to any.
> in /etc/rc.local:
> /usr/sbin/natd -n ep0
> what I doing wrong ?
>
I dont know whats wrong. Try to do these steps to detect.
1. Make sure, you have this line in /etc/services
natd 6668/divert # Network Address Translation socket
2. Check your server routes (netstat -rn).
3. ipfw flush
ipfw add 1000 pass all from 127.0.0.1 to 127.0.0.1
4. run your natd
natd -port 6668 -interface ep0
do 'netstat -a' and see is there any natd port open (listen) ?
5. ipfw add 1001 divert 6668 all from any to any via ep0
6. ipfw add 6500 pass all from any to any
7. Try to make connection. Make sure your client has correct gateway
(server run natd).
8. Do 'ipfw show' and see what happen. How many packets come in and out,
in which rule.
Now, tell us the results for each step.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.95q.971105174926.8949A-100000>