From owner-freebsd-questions@FreeBSD.ORG Thu Oct 2 04:09:34 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 4FCF61065694 for ; Thu, 2 Oct 2008 04:09:34 +0000 (UTC) (envelope-from jotawski@gmail.com) Received: from fg-out-1718.google.com (fg-out-1718.google.com [72.14.220.155]) by mx1.freebsd.org (Postfix) with ESMTP id CC9B98FC0A for ; Thu, 2 Oct 2008 04:09:33 +0000 (UTC) (envelope-from jotawski@gmail.com) Received: by fg-out-1718.google.com with SMTP id l26so592066fgb.35 for ; Wed, 01 Oct 2008 21:09:32 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to :subject:cc:in-reply-to:mime-version:content-type:references; bh=mkMblUtfC1aiu6/ieOMVSF2Gp46AYNRFYjzu2DHEyLg=; b=AHtCLbQLgcYBZ99BHh5J4Z5TSxL/YNAKl9HjXYlF8g5dwWWauEh/B1V/jzLGKEw/ax j73vPHIkWZOQpmxM9972drptrDGXQqQHeERb2fk/LIJFuOIZv+JDfXm5lrcXJdLJiOWF vYH17E3OvZh9+ZVyPcD5nziuhqXYaLyKY3YWM= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:cc:in-reply-to:mime-version :content-type:references; b=KNd4qh67cYd6k50QFuJDZ79t99XebjMi0sLVxISHx8nDJj3C+ASSYaIcSmdDckdMkU kkhilowFxOZbqtjlZdYjHPael4QsH+yyGZZh8t2ILbFlc0ombh9HnYSy4c4M+PX7LGld nTG5xUv7HLJylRm/sfTMaa7IopqjuGnOam5Qc= Received: by 10.180.236.14 with SMTP id j14mr5202764bkh.4.1222920572453; Wed, 01 Oct 2008 21:09:32 -0700 (PDT) Received: by 10.181.22.11 with HTTP; Wed, 1 Oct 2008 21:09:32 -0700 (PDT) Message-ID: Date: Thu, 2 Oct 2008 11:09:32 +0700 From: "fire jotawski" To: "Kevin Kinsey" In-Reply-To: <48DA7491.8030002@daleco.biz> MIME-Version: 1.0 References: <48DA7491.8030002@daleco.biz> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-questions@freebsd.org, fbsd1@a1poweruser.com Subject: Re: nat and firewall X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 02 Oct 2008 04:09:34 -0000 On Thu, Sep 25, 2008 at 12:10 AM, Kevin Kinsey wrote: > FBSD1 wrote: > >> >> natd_enable="YES" This statement in rc.conf enables ipfw nated function. >> firewall_nat_enable="YES" This is an invalid statement. No such thing as >> you have here. >> > > This is no longer true; he did indeed find "firewall_nat_enable" > in /etc/defaults/rc.conf. The knob seems to have first appeared > in February in HEAD and I'm guessing it cues the system to use a > new kernel-based nat rather than natd(8), but I've not read anything > further about this, as my system isn't as up to date as the OP's. > I don't know when this change was MFC'ed, but apparently fairly > recently? > > I suppose we need someone a tad more "in the know" to straighten > that out for us. > up to this moment, i do not know if natd and firewall_nat function in the same or different. and is there firewall_nat_flags thing too ? thanks in advanced for any helps and hints. regards, psr > > Kevin Kinsey > -- > A wise man can see more from a mountain top > than a fool can from the bottom of a well. >