Skip site navigation (1)Skip section navigation (2) 
Date:      Tue, 10 Aug 1999 12:44:56 -0700
From:      elazich@AlaskaAir.com
To:        roelof@nisser.com
Cc:        freebsd-questions@FreeBSD.ORG
Subject:   Re: IPFW & NATD
Message-ID:  <msg1128793.thr-7ff1f0.4c526e@alaskaair.com>
References:  <msg1128595.thr-7ff1f0.4c526e@alaskaair.com> <37B07E47.87BA2924@nisser.com>
next in thread | previous in thread | raw e-mail | index | archive | help 
Yes, sorry I meant on the public interface, so that's all there is to
it?  Just setup a rule for my firewall to divert packets and my
internal hosts can access internet hosts?  What about DNS, do I/can I
set up dual level DNS so my internal hosts can resolve amongst
themselves and can also forward request from the internal DNS server to
the one running on the public interface.

Eli

roelof@nisser.com writes:
>elazich@AlaskaAir.com wrote:
>> 
>> Sorry if this has been asked and answered and if it has just point me
>> in the right direction.  What I want to do is pretty simple, run my
>> FBSD box as a firewall with a static IP address on the external
>> interface on a DSL connection.  I also have an internal interface
>which
>> is on the 10 net work along with about 10 machines behind the
>firewall.
>>  As I understand it, I have recompiled a kernel with the appropriate
>> IPFW options (3 of them as I recall) and run natd.  The question I
>have
>> is this, am I right in running natd on my internal interface?  And do
>I
>> simply need a IPFW divert rule directing traffic from natd out or am I
>> completely missing the boat here.  Any help is greatly appreciated.

>No, you must run natd on the public interface. You should also declare
>a firewall_type, start with open, as well as enable the firewall.

>Roelof

>-- 
>Home is where the (@) http://eboa.com/ is.


>To Unsubscribe: send mail to majordomo@FreeBSD.org
>with "unsubscribe freebsd-questions" in the body of the message



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?msg1128793.thr-7ff1f0.4c526e>