From owner-freebsd-questions Tue Sep 7 8:40:48 1999 Delivered-To: freebsd-questions@freebsd.org Received: from relay.ucb.crimea.ua (relay.ucb.crimea.ua [212.110.138.1]) by hub.freebsd.org (Postfix) with ESMTP id 8CDE615569 for ; Tue, 7 Sep 1999 08:39:25 -0700 (PDT) (envelope-from ru@ucb.crimea.ua) Received: (from ru@localhost) by relay.ucb.crimea.ua (8.9.3/8.9.3/UCB) id SAA37865; Tue, 7 Sep 1999 18:37:39 +0300 (EEST) (envelope-from ru) Date: Tue, 7 Sep 1999 18:37:39 +0300 From: Ruslan Ermilov To: James Gill , questions@freebsd.org Subject: Re: natd redirects not happening Message-ID: <19990907183739.A37555@relay.ucb.crimea.ua> Mail-Followup-To: James Gill , questions@freebsd.org References: <19990820102330.A44737@relay.ucb.crimea.ua> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.95.3i In-Reply-To: <19990820102330.A44737@relay.ucb.crimea.ua>; from Ruslan Ermilov on Fri, Aug 20, 1999 at 10:23:30AM +0300 X-Operating-System: FreeBSD 3.2-STABLE i386 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Fri, Aug 20, 1999 at 10:23:30AM +0300, Ruslan Ermilov wrote: > On Thu, Aug 19, 1999 at 12:52:18PM -0400, James Gill wrote: > > > > I'm having trouble trying to redirect incoming connections to my > > firewall on specific ports to other machines on my network. > > > > In looking at my natd stuff in rc.conf and it seems (to me) to be > > right: > > -------------------------------------- > > ### FIREWALL AND NATD CONFIG ### > > firewall_enable="YES" > > firewall_type="open" > > > > natd_program="/sbin/natd" > > natd_enable="YES" #firewall_enable must also be set to yes > > # #and ipdivert must also be in kernel > > natd_interface="ed1" > > natd_flags="-f /etc/rc.natd" > > -------------------------------------- > > > > and the file rc.natd is long and full of comments, but here's the > > relevant section: > > -------------------------------------- > > ### redirected ports ### > > # redirect_port proto tergetIP:targetPORT [aliasIP:]aliasPORT \ > > # [remoteIP[:remotePORT]] > > # example: redirect_port tcp inside1:telnet 6666 > > # means that tcp packets destines for port 6666 on this machine will > > be sent > > # to the telnet port on the inside1 machine > > #redirect_port > > redirect_port tcp 10.101.101.33:21 21 #ftp > > redirect_port tcp 10.101.101.131:23 23 #telnet > > redirect_port tcp 10.101.101.33:25 25 #smtp > > redirect_port tcp 10.101.101.33:80 80 #www-tcp > > redirect_port udp 10.101.101.33:80 80 #www-udp > > redirect_port tcp 10.101.101.33:110 110 #pop3-tcp > > redirect_port udp 10.101.101.33:110 110 #pop3-udp > > -------------------------------------- > > > > What am i missing? Why are my redirects not happening? > > > This is a bug in natd(8). Remove the comments (`#ftp', etc.) > at the end of your redirect_port lines and you should be OK. > This will be fixed soon. > This is now fixed in -current. -- Ruslan Ermilov Sysadmin and DBA of the ru@ucb.crimea.ua United Commercial Bank, ru@FreeBSD.org FreeBSD committer, +380.652.247.647 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message