From owner-freebsd-questions Wed Nov 20 2: 8:37 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 97C1337B401 for ; Wed, 20 Nov 2002 02:08:36 -0800 (PST) Received: from smtp.infracaninophile.co.uk (ns0.infracaninophile.co.uk [81.2.69.218]) by mx1.FreeBSD.org (Postfix) with ESMTP id ACF0843E4A for ; Wed, 20 Nov 2002 02:08:35 -0800 (PST) (envelope-from m.seaman@infracaninophile.co.uk) Received: from happy-idiot-talk.infracaninophile.co.uk (localhost.infracaninophile.co.uk [IPv6:::1]) by smtp.infracaninophile.co.uk (8.12.6/8.12.6) with ESMTP id gAKA8Wx2050718 for ; Wed, 20 Nov 2002 10:08:32 GMT (envelope-from matthew@happy-idiot-talk.infracaninophile.co.uk) Received: (from matthew@localhost) by happy-idiot-talk.infracaninophile.co.uk (8.12.6/8.12.6/Submit) id gAKA8RBW050717 for questions@FreeBSD.ORG; Wed, 20 Nov 2002 10:08:27 GMT Date: Wed, 20 Nov 2002 10:08:27 +0000 From: Matthew Seaman To: questions@FreeBSD.ORG Subject: Re: NATD... Message-ID: <20021120100827.GC50113@happy-idiot-talk.infracaninophi> Mail-Followup-To: Matthew Seaman , questions@FreeBSD.ORG References: <3DDB4F99.5040302@maske-tech.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <3DDB4F99.5040302@maske-tech.com> User-Agent: Mutt/1.5.1i X-Spam-Status: No, hits=-2.7 required=5.0 tests=IN_REP_TO,QUOTED_EMAIL_TEXT,REFERENCES,SPAM_PHRASE_03_05, USER_AGENT,USER_AGENT_MUTT version=2.43 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Wed, Nov 20, 2002 at 03:02:17AM -0600, Douglas A. Maske wrote: > How can I do a NAT hide so I can get the real IP address of incoming > traffic to my webserver instead of the NAT internal IP? NAT, when configured in the usual way, shouldn't affect the source address of an incoming packet -- just the destination. Similarly it should rewrite just the source (internal) address on outgoing packets. For a webserver behind a NAT gateway, the nat'ing process should be essentially invisible: the internal network appears to be directly connected to the internet. I don't see quite what you are trying to achieve here. Could you tell us some more detail about the layout of your network, what you're seeing at the moment and what you'ld like to see? Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks Savill Way Marlow Tel: +44 1628 476614 Bucks., SL7 1TH UK To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message