From owner-freebsd-ipfw Thu Aug 1 12:49:40 2002 Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E1AAE37B400 for ; Thu, 1 Aug 2002 12:49:35 -0700 (PDT) Received: from smtp.a1poweruser.com (oh-chardon6a-62.clvhoh.adelphia.net [68.65.175.62]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0074C43E84 for ; Thu, 1 Aug 2002 12:49:35 -0700 (PDT) (envelope-from barbish@a1poweruser.com) Received: from barbish (lanwin1 [10.0.10.6]) by smtp.a1poweruser.com (Postfix) with SMTP id 584B631; Thu, 1 Aug 2002 15:53:15 -0400 (EDT) Reply-To: From: "Joe & Fhe Barbish" To: "Robert D Hughes" Cc: "FBIPFW" Subject: RE: natd & keep-state Date: Thu, 1 Aug 2002 15:49:32 -0400 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: Importance: Normal Sender: owner-freebsd-ipfw@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Bob, thanks very much for your offer. If your rules file has keep-state rules in it, I would be interested in = seeing it. The problem is natd with ipfw keep-state rules not ipfw with natd.=20 This being the list where IPFW internals and design problems are talked = over,=20 I really want a experienced person like you to provide independent = verification =20 that there is a bug in natd with ipfw keep-state rules.=20 Just humor me and test the simple rules file I provided in my original = post and=20 make it work on your box. I bet you can not get it to work. =20 I say there's a bug in natd and need help bring it to light before this = list group. Can you help in this effort?=20 Thanks Joe=20 -----Original Message----- From: owner-freebsd-ipfw@FreeBSD.ORG = [mailto:owner-freebsd-ipfw@FreeBSD.ORG]On Behalf Of Robert D Hughes Sent: Thursday, August 01, 2002 2:45 PM To: FBIPFW Subject: RE: natd & keep-state -----Original Message----- From: Joe & Fhe Barbish [mailto:barbish@a1poweruser.com] Sent: Wed 7/31/2002 9:07 PM To: FBIPFW Cc: Subject: natd & keep-state IPFW list members =20 Advanced Stateful extensions were introduced in FBSD 4.0. When = they first can out I changed my ipfw rules from stateless and simple stateful to using only Advanced Stateful rules for my user ppp -nat ISP connection. The ipfw rule set that works with user =20 It might help if you described in more detail what problems = you're having. I'm running a rather much more complex rule set that = works using fine ipfw and natd, including port redirects, passive and = active ftp, etc. Would you like to look at my rule set? Rob Nrz vfj:v?=16=05=20 =1Bry y{y?=20 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message