Site Navigation

Date:      Sat, 31 Jul 2010 20:18:24 +0200
From:      Rick van der Zwet <info@rickvanderzwet.nl>
To:        Alexander Petrovsky <askjuise@gmail.com>
Cc:        freebsd-jail@freebsd.org
Subject:   Re: trouble getting Jail with IPFW+NAT to work
Message-ID:  <AANLkTimts%2BsGu9%2BYxy4h5s139LTq9bNebRYQBTaoPACB@mail.gmail.com>
In-Reply-To: <AANLkTimNO2QxiOZmV7snRGjS_dYu-QcPC0aPueghmmHW@mail.gmail.com>
References:  <AANLkTinfQrE=eRSQ1gEFQfoib=9=PC4einxBWTqFBhyj@mail.gmail.com> <AANLkTimgsDa%2B1_JA86CeLefHnZQ2OaAB7RnFU8gVsFM=@mail.gmail.com> <AANLkTinGGXWR7JxSA96RdECTpshmPSxiwr%2Be6eRdLQWH@mail.gmail.com> <AANLkTimNO2QxiOZmV7snRGjS_dYu-QcPC0aPueghmmHW@mail.gmail.com>

---

next in thread | previous in thread | raw e-mail | index | archive | help

---

On 31 July 2010 18:45, Alexander Petrovsky <askjuise@gmail.com> wrote:
> This is too stupid rule:
> ${fwcmd} add nat 200 all from=A010.0.0.0/24=A0to any via re0
> ${fwcmd} nat 200 config if re0
> Try like someting like this:
> ${fwcmd} add nat 1 all from 10.0.0.0/24 to any out recv lo1 xmit re0
> ${fwcmd} add nat 1 all from any to=A078.46.85.230 in recv re0
> ${fwcmd} nat 1 config if re0

That's not working, no NAT get 'applied'.

18:15:44.223649 IP 10.0.0.2 > 8.8.8.8: ICMP echo request, id 19034,
seq 0, length 64
18:15:45.228834 IP 10.0.0.2 > 8.8.8.8: ICMP echo request, id 19034,
seq 1, length 64
18:15:46.234813 IP 10.0.0.2 > 8.8.8.8: ICMP echo request, id 19034,
seq 2, length 64
18:15:47.240807 IP 10.0.0.2 > 8.8.8.8: ICMP echo request, id 19034,
seq 3, length 64


> or this:
> ${fwcmd} add nat 1 all from 10.0.0.0/24 to any out via re0
> ${fwcmd} add nat 1 all from any to=A078.46.85.230 in via re0
> ${fwcmd} nat 1 config if re0

Cool works like a charm.

Thanks!
/Rick
--=20
http://rickvanderzwet.nl

---

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?AANLkTimts%2BsGu9%2BYxy4h5s139LTq9bNebRYQBTaoPACB>

Legal Notices | © 1995-2024 The FreeBSD Project. All rights reserved.

Contact