RE: IP Filter problem.

From owner-freebsd-security Fri Jul 21 10:58:24 2000 Delivered-To: freebsd-security@freebsd.org Received: from sn1oexchr01.nextvenue.com (sn1oexchr01.nextvenue.com [63.209.169.9]) by hub.freebsd.org (Postfix) with SMTP id D90F737BDC6 for ; Fri, 21 Jul 2000 10:58:17 -0700 (PDT) (envelope-from nevans@nextvenue.com) Received: FROM sn1exchmbx.nextvenue.com BY sn1oexchr01.nextvenue.com ; Fri Jul 21 13:56:29 2000 -0400 Received: by sn1exchmbx.nextvenue.com with Internet Mail Service (5.5.2650.21) id <3987SM8P>; Fri, 21 Jul 2000 13:53:53 -0400 Message-ID: <712384017032D411AD7B0001023D799B07CA2A@sn1exchmbx.nextvenue.com> From: Nick Evans To: 'Fernando Schapachnik' , freebsd-security@freebsd.org Subject: RE: IP Filter problem. Date: Fri, 21 Jul 2000 13:53:52 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Content-Type: multipart/alternative; boundary="----_=_NextPart_001_01BFF33C.A1E15630" Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This message is in MIME format. Since your mail reader does not understand this format, some or all of this message may not be legible. ------_=_NextPart_001_01BFF33C.A1E15630 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable I think there was a bug with 3.4.6 that didn't allow multiple rdr's to = one internal IP. Check the IPFilter mailing list archives for that: http://coombs.anu.edu.au/~avalon -----Original Message----- From: Fernando Schapachnik [mailto:fpscha@ns1.via-net-works.net.ar] Sent: Friday, July 21, 2000 10:41 AM To: freebsd-security@freebsd.org Subject: IP Filter problem. Hello: I'm running IP Filter 3.4.6 on FreeBSD 3.4-RELEASE. My ipnat config. looks like: rdr ed1 ext_ip/32 port 80 -> int_ip port 80 tcp rdr ed1 ext_ip/32 port 25 -> int_ip port 25 tcp rdr ed1 ext_ip/32 port 110 -> int_ip port 110 tcp When adding the last rule, ipnat complains with: ioctl(SIOCADNAT): File exists ipnat -l consistently shows only the first 2 rules. Any ideas? Thanks! Fernando P. Schapachnik Administraci=F3n de la red VIA NET.WORKS ARGENTINA S.A. fernando@via-net-works.net.ar (54-11) 4323-3333 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message ------_=_NextPart_001_01BFF33C.A1E15630 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable RE: IP Filter problem.

I think there was a bug with 3.4.6 that didn't allow = multiple rdr's to one internal IP. Check the IPFilter mailing list = archives for that: http://coombs.anu.edu.au/~avalon

-----Original Message-----
From: Fernando Schapachnik [mailto:fpscha@ns1.via-ne= t-works.net.ar]
Sent: Friday, July 21, 2000 10:41 AM
To: freebsd-security@freebsd.org
Subject: IP Filter problem.

Hello:
I'm = running IP Filter 3.4.6 on FreeBSD 3.4-RELEASE.

My ipnat = config. looks like:

rdr ed1 ext_ip/32 port 80 -> int_ip port 80 = tcp
rdr ed1 ext_ip/32 port 25 -> int_ip port 25 = tcp
rdr ed1 ext_ip/32 port 110 -> int_ip port 110 = tcp

When = adding the last rule, ipnat complains with:
ioctl(SIOCADNAT): File exists

ipnat -l = consistently shows only the first 2 rules.

Any = ideas?

Thanks!

Fernando P. Schapachnik
Administraci=F3n de la red
VIA NET.WORKS ARGENTINA S.A.
fernando@via-net-works.net.ar
(54-11) 4323-3333

To Unsubscribe: send mail to = majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the = body of the message

------_=_NextPart_001_01BFF33C.A1E15630-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message