Date: Wed, 28 Jan 1998 20:39:00 +0000 From: Brian Somers <brian@Awfulhak.org> To: Christoph Kukulies <kuku@gilberto.physik.rwth-aachen.de> Cc: Brian Somers <brian@Awfulhak.org>, freebsd-questions@FreeBSD.ORG, chrisa@commlet.com Subject: Re: natd/libalias question Message-ID: <199801282039.UAA09574@awfulhak.org> In-Reply-To: Your message of "Wed, 28 Jan 1998 10:13:30 GMT." <19980128101330.57483@gil.physik.rwth-aachen.de>
next in thread | previous in thread | raw e-mail | index | archive | help
[.....]
> It works!
>
> With the following /etc/rc.firewall:
>
> /sbin/ipfw -f flush
> /sbin/ipfw add divert natd all from any to any via le0
> /sbin/ipfw add divert natd all from any to any via ipi0
> /sbin/ipfw add pass all from any to any
>
> And the following natd start line:
>
> natd -redirect_address 192.168.1.114 0.0.0.0 -n ipi0
>
> I still have to understand why this natd line makes it work for any
> host on my local network, though :-)
I'm surprised the first line doesn't break things :-| It's not
necessary and shouldn't really be there.
All natd is doing is altering all outgoing packets so that their src
address is that of the interface, and then un-altering packets that
come back in.
> --
> Chris Christoph P. U. Kukulies kuku@gil.physik.rwth-aachen.de
--
Brian <brian@Awfulhak.org>, <brian@FreeBSD.org>, <brian@OpenBSD.org>
<http://www.Awfulhak.org>;
Don't _EVER_ lose your sense of humour....
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199801282039.UAA09574>