Date: Mon, 13 Mar 2006 13:50:44 -0600 From: Dennis Olvany <dennisolvany@gmail.com> To: Vladimir Grigor <xvga@mail.ru> Cc: freebsd-ipfw@freebsd.org Subject: Re: ipfw2(stateful)+divert; why divert rule is ignored? Message-ID: <4415CD14.9070000@gmail.com> In-Reply-To: <1014435727.20060313174344@mail.ru> References: <1438179712.20060310114356@mail.ru> <1014435727.20060313174344@mail.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
> Regular NAT is working properly, but I can't configure NAPT to > services on server in LAN.... You mean port forwarding? > 03800 0 0 divert 6893 log logamount 100 tcp from > 192.168.0.1 80 to any out via tun0 Possibly traffic has already been translated at this point? > 04700 25 1554 divert 6893 log logamount 100 tcp from any to > 212.42.xxx.xxx dst-port 80 in via tun0 Why multiple diverts? > 05000 150 6816 allow log logamount 100 tcp from any to 192.168.0.1 > dst-port 80 in via tun0 setup keep-state I believe you'll find setup keep-state incompatible with natd.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4415CD14.9070000>