Date: Wed, 23 Feb 2000 06:42:20 +1100 (EST) From: Hugh Blandford <hugh@mail.island.net.au> To: up@3.am Cc: FreeBSD ISP List <freebsd-isp@FreeBSD.ORG> Subject: Re: NAT port redirection question Message-ID: <Pine.BSF.3.96.1000223063155.2092A-100000@mail.island.net.au> In-Reply-To: <Pine.BSF.4.10.10002220948460.69503-100000@richard2.pil.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi James, I take it that they are using user ppp through the tun device. I don't know what version of FBSD you are using, but I believe you will want to use ppp's NAT. If you have a look in man ppp there are various options to do with nat. I believe you will need to be running 3.x and above to have this in by default. Otherwise go and grab the sources that are mentioned at http://www.awfulhak.org/ppp.html Regards, Hugh On Tue, 22 Feb 2000 up@3.am wrote: > > I have a dedicated dialup customer who I set up a FBSD box running user > ppp and natd on tun0, and it's been working better than any appliance I > could imagine; Win95 boxes on the same LAN seem to browse the web faster > than they do directly over DUN. > > However, they now want one of their Ether printers to be accessible from > the Internet, so I'm trying to set up a static port map, or redirection. > I checked out natd(8) and the command looks pretty simple, it's just a > question or where natd is invoked. I tried this in an rc.firewall file, > which wouldn't work: > > /sbin/ipfw -f flush > /sbin/ipfw add divert natd -redirect_port tcp 10.0.0.133:35 35 \ > all from any to any via tun0 > /sbin/ipfw add pass all from any to any > > So, I went back to: > > /sbin/ipfw -f flush > /sbin/ipfw add divert natd all from any to any via tun0 > /sbin/ipfw add pass all from any to any > > then, in rc.conf, tried: > > natd_enable="YES" > natd_interface="tun0" > natd_flags="-redirect_port tcp 10.0.0.133:35 35" > > I didn't get any errors, but it doesn't appear to be working, either (I > have the customer calling the printer vendor to make sure they have the > printer's gateway settings correct right now). > > Before I pull any more hairs out, I just want to make sure I'm not missing > anything. > > TIA! > > James Smallacombe PlantageNet, Inc. CEO and Janitor > up@3.am http://3.am > ========================================================================= > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.96.1000223063155.2092A-100000>