Date: Tue, 07 Oct 2003 19:27:10 +0900 From: Luke Kearney <lukek@meibin.net> To: "Michael Lee" <kclee@tiny.ws> Cc: FreeBSD Questions <freebsd-questions@freebsd.org> Subject: Re: IPF and Routing Message-ID: <20031007191818.B2E8.LUKEK@meibin.net> In-Reply-To: <002801c38cbd$02d4bd70$ca00a8c0@michael> References: <20031007110654.B2D9.LUKEK@meibin.net> <002801c38cbd$02d4bd70$ca00a8c0@michael>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi There, Yes I have read it several times. I have set up an ipnat.conf file that looks a lot like this bimap 192.168.1.10 -> 10.0.0.3 bimap 192.168.1.11 -> 10.0.0.4 and so on and so forth I need to ensure that each internal address gets the same external address each time. I have aliased all of the external addresses to the external interface so I was wondering if this would work or did there need to be additional physical interfaces for this to work properly. I am thinking that there would be no need to have multiple interfaces but I am wondering if it is indeed all that simple. The reason for static NAT is that each internal client needs to connect to a remote VPN server which requires one unique IP for each address ( broken damned M$ VPN server ). Mapping static is not a great problem given that each internal client will get it's address via DHCP. Does this make sense ? TIA LukeK On Tue, 7 Oct 2003 18:23:00 +0800 "Michael Lee" <kclee@tiny.ws> granted us these pearls of wisdom: > Hi, > > Have you checked the How-to of ipf ? > Mapping Many Addresses Into a Pool of Addresses. > > http://www.obfuscation.org/ipf/ipf-howto.html#TOC_31 > > ----- Original Message ----- > From: "Luke Kearney" <lukek@meibin.net> > To: "FreeBSD Questions" <freebsd-questions@freebsd.org> > Sent: Tuesday, October 07, 2003 10:12 AM > Subject: IPF and Routing > > > > > > Hello, > > I have question regarding IPNat and routing. The situation is that I > > need to setup a network where each machine gets a unique global IP > > address from behind a firewall which performs NAT. I have 16 addresses > > so my question is can I alias 14 addresses to the primary nic and then > > config each private address to map directly to one global address or > > have I missed something fundamental about this ? > > > > Any advice is appreciated. > > > > TIA LukeK > > > > _______________________________________________ > > freebsd-questions@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" > > > >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20031007191818.B2E8.LUKEK>