Date: Tue, 22 Jan 2002 16:33:02 +0200 From: Barry Irwin <bvi@itouchlabs.com> To: "Rami W. Qutub" <rami@idsintl.com> Cc: FREEBSD-IPFW@freebsd.org Subject: Re: Gateway & Firewall Message-ID: <20020122163302.V32746@itouchlabs.com> In-Reply-To: <008201c1a350$5e63e240$9600000a@rami>; from rami@idsintl.com on Tue, Jan 22, 2002 at 04:23:30PM %2B0200 References: <008201c1a350$5e63e240$9600000a@rami>
next in thread | previous in thread | raw e-mail | index | archive | help
you need a firewall rule to pass traffic to the natd have a look at the natd man page and it describes this. you need something like: ipfw add 100 divert natd ip from any to any via xl1 but please refer to the manpage above for more details. the ipfw man page should also be read. Barry -- Barry Irwin bvi@itouchlabs.com +27214875150 Systems Administrator: Networks And Security Itouch Labs http://www.itouchlabs.com South Africa > > > Hi All, > > I am facing a problem in installing and configuring my FreeBSD Gateway > Server. I installed FreeBSD 4.4 on the server, and then change the > /etc/rc.conf file by adding the following lines > gateway_enable="YES" > firewall_enable="YES" > firewall_type="OPEN" > natd_enable="YES" > natd_interface="xl1" > natd_flags="" > > The I re-compiled the kernal after adding > options IPFIREWALL > options IPDIVERT > options IPFIREWALL_VERBOSE > Options IPFIREWALL_FORWARD > > Before doing all the above I installed 2 network cards on the server, > and I gave the first one "xl1" the extrnal ip with DNS name, ...etc. And > I gave the second one an Internal ip. > > So what else shall I do to run the system !!?? > > Please advise. > > Rami > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-ipfw" in the body of the message > > -- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020122163302.V32746>