Date: Fri, 02 Jul 1999 00:15:25 +0100 From: Brian Somers <brian@Awfulhak.org> To: Ruslan Ermilov <ru@FreeBSD.org> Cc: Brian Somers <brian@FreeBSD.org>, Ludwig Pummer <ludwigp@bigfoot.com>, cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: Re: cvs commit: src/sbin/natd natd.8 Message-ID: <199907012315.AAA04285@dev.lan.awfulhak.org> In-Reply-To: Your message of "Thu, 01 Jul 1999 17:08:41 %2B0300." <19990701170841.A35816@relay.ucb.crimea.ua>
next in thread | previous in thread | raw e-mail | index | archive | help
> On Mon, Jun 21, 1999 at 12:58:26AM -0700, Brian Somers wrote: > > brian 1999/06/21 00:58:26 PDT > > > > Modified files: > > sbin/natd natd.8 > > Log: > > Mention that data going from one internal address to another will > > not be processed by natd. > > Requested by: Ludwig Pummer <ludwigp@bigfoot.com> > > > > Revision Changes Path > > 1.19 +11 -4 src/sbin/natd/natd.8 > > > > The text of this change was: > } It should be noted that only incoming packets are affected. > } ^^^^^^^^ > } Data going from one internal network to another will not be > } ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ > } processed by natd. > > I don't understand. Look at my example: > > # ipfw add 1 divert 6666 tcp from 192.168.1.1 1234 to any > # nc -s 192.168.1.1 -p 1234 192.168.1.2 5678 > # natd -v -p 6666 -a 1.2.3.4 -redirect_port tcp 192.168.1.1:1234 2345 > Out [TCP] [TCP] 192.168.1.1:1234 -> 192.168.1.2:5678 aliased to > [TCP] 1.2.3.4:1234 -> 192.168.1.2:5678 > > It is outgoing packet following from one internal host to another, > and it _is_ affected. What did you mean? AFAIK the above should fail horribly because none of the backstream packets will be passed to natd and they'll therefore never get de-aliased. natd considers the interface that it is operating on (the one with address 1.2.3.4 in your example) as the ``external'' interface. A packet coming *in* to that interface will make the alias table entry, and packets that don't pass by that interface won't be seen by natd. I agree it's not well worded. Feel free to reword it :-I > Thanks, > -- > Ruslan Ermilov Sysadmin and DBA of the > ru@ucb.crimea.ua United Commercial Bank, > ru@FreeBSD.org FreeBSD committer, > +380.652.247.647 Simferopol, Ukraine > > http://www.FreeBSD.org The Power To Serve > http://www.oracle.com Enabling The Information Age -- Brian <brian@Awfulhak.org> <brian@FreeBSD.org> <http://www.Awfulhak.org>; <brian@OpenBSD.org> Don't _EVER_ lose your sense of humour ! <brian@FreeBSD.org.uk> To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199907012315.AAA04285>