From owner-freebsd-isp Tue Feb 22 11:43:45 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.island.net.au (mail.island.net.au [203.28.142.3]) by hub.freebsd.org (Postfix) with ESMTP id C598337B760 for ; Tue, 22 Feb 2000 11:43:40 -0800 (PST) (envelope-from hugh@mail.island.net.au) Received: from localhost (hugh@localhost) by mail.island.net.au (8.8.5/8.8.5) with SMTP id GAA02139; Wed, 23 Feb 2000 06:42:20 +1100 (EST) Date: Wed, 23 Feb 2000 06:42:20 +1100 (EST) From: Hugh Blandford To: up@3.am Cc: FreeBSD ISP List Subject: Re: NAT port redirection question In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi James, I take it that they are using user ppp through the tun device. I don't know what version of FBSD you are using, but I believe you will want to use ppp's NAT. If you have a look in man ppp there are various options to do with nat. I believe you will need to be running 3.x and above to have this in by default. Otherwise go and grab the sources that are mentioned at http://www.awfulhak.org/ppp.html Regards, Hugh On Tue, 22 Feb 2000 up@3.am wrote: > > I have a dedicated dialup customer who I set up a FBSD box running user > ppp and natd on tun0, and it's been working better than any appliance I > could imagine; Win95 boxes on the same LAN seem to browse the web faster > than they do directly over DUN. > > However, they now want one of their Ether printers to be accessible from > the Internet, so I'm trying to set up a static port map, or redirection. > I checked out natd(8) and the command looks pretty simple, it's just a > question or where natd is invoked. I tried this in an rc.firewall file, > which wouldn't work: > > /sbin/ipfw -f flush > /sbin/ipfw add divert natd -redirect_port tcp 10.0.0.133:35 35 \ > all from any to any via tun0 > /sbin/ipfw add pass all from any to any > > So, I went back to: > > /sbin/ipfw -f flush > /sbin/ipfw add divert natd all from any to any via tun0 > /sbin/ipfw add pass all from any to any > > then, in rc.conf, tried: > > natd_enable="YES" > natd_interface="tun0" > natd_flags="-redirect_port tcp 10.0.0.133:35 35" > > I didn't get any errors, but it doesn't appear to be working, either (I > have the customer calling the printer vendor to make sure they have the > printer's gateway settings correct right now). > > Before I pull any more hairs out, I just want to make sure I'm not missing > anything. > > TIA! > > James Smallacombe PlantageNet, Inc. CEO and Janitor > up@3.am http://3.am > ========================================================================= > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message