Date: Fri, 19 Jan 2001 13:07:07 -0800 (PST) From: Ian Kallen <spidaman@arachna.com> To: Gordon Tetlow <gordont@bluemtn.net> Cc: freebsd-hackers@freebsd.org Subject: Re: accessing an outside IP from inside a NAT net Message-ID: <Pine.BSF.4.10.10101191257590.789-100000@along-came-a-spider.arachna.com> In-Reply-To: <Pine.BSF.4.31.0101190223190.3187-100000@sdmail0.sd.bmarts.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Hmm, I tried that now. I can ping from one subnet to the other, the redirect_port directive appears to be working (at least outside machines can access the internal IP/port combination correctly). But the client subnet still cannot reach the server subnet via the public IP. The servers and clients all have proper subnetmasks, so they shouldn't be talking to each other directly but only through the router/natd machine. Any other ideas? thanks, -Ian -- Ian Kallen <spidaman@arachna.com> | AIM: iankallen | efax: (415) 354-3326 On Fri, 19 Jan 2001, Gordon Tetlow wrote: > On Fri, 19 Jan 2001, Ian Kallen wrote: > > > Now if the DNS for the web server www.foo.com running on 10.0.0.128 > > directs a browser on the 10.0.0.0 net to 206.169.18.10, it doesn't get > > routed back to 10.0.0.128; it just hangs (I'm acutally not sure what's > > happening there, the connction never succeeds). Is there a nice way to > > handle this case without running a dummy DNS just for the 10.0.0.0 > > internal net? > > What's happening is the webserver (10.0.0.128) gets the request but is > talking directly back to the requesting machine (assuming they are on the > same subnet) when the requesting machine is expecting a reply from your > ext_ip. They only easy way I see how to do this is to split your internal > net into mulitple subnets so that your client machines are one and your > servers are on another. > > -gordon > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.10.10101191257590.789-100000>