From owner-freebsd-questions Tue Aug 13 15:40:22 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 517ED37B401 for ; Tue, 13 Aug 2002 15:40:14 -0700 (PDT) Received: from web20511.mail.yahoo.com (web20511.mail.yahoo.com [216.136.175.150]) by mx1.FreeBSD.org (Postfix) with SMTP id 02F4643E6A for ; Tue, 13 Aug 2002 15:40:14 -0700 (PDT) (envelope-from dereksailor@yahoo.com) Message-ID: <20020813224013.94996.qmail@web20511.mail.yahoo.com> Received: from [24.30.241.0] by web20511.mail.yahoo.com via HTTP; Tue, 13 Aug 2002 15:40:13 PDT Date: Tue, 13 Aug 2002 15:40:13 -0700 (PDT) From: Derek Sailor Subject: Re: Unable to connect to servers outside of intranet To: Matthew Seaman Cc: freebsd-questions@FreeBSD.ORG In-Reply-To: <20020812102104.GD7021@happy-idiot-talk.infracaninophi> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG --- Matthew Seaman wrote: > On Sun, Aug 11, 2002 at 08:02:11PM -0700, Derek > Sailor wrote: > > > I have two server services running, sshd and ftpd. > > > >From my internal network (192.168.0.x) on > interface > > de0 I'm able to connect fine. However, from the > > internet (on my AT&T broadband cable modem) on > > interface de1 I'm unable to connect at all. > > This smells like one of two things to me --- mostly > because you've > eliminated pretty much all the other options in your > quite excellent > report. > > Second option is the NAT configuration on your > machine. > > The problem comes when the connection is initiated > from the outside > --- what address should natd forward the packets to? > There are > several '-redirect' options given in the natd(8) man > page in order to > solve this problem. In your case, I think all you > need to do is > redirect tcp traffic on ports 20 (ftp-data), 21 > (ftp) and 22 (ssh) to > the internal interface of your machine, by adding > > --redirect_port tcp 192.168.0.1:20-22 20-22 > > to the natd flags (assuming 192.168.0.1 is the > address of your de0 > interface). > > Cheers, > > Matthew Duh! I never thought about the natd getting confused and dropping the unrequested packets! This indeed fixed the problem completely. Thanks so much for your help Matthew!!!! Derek __________________________________________________ Do You Yahoo!? HotJobs - Search Thousands of New Jobs http://www.hotjobs.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message